fbd15bd44c9d1a77b6aa08f35c0af6d795baae915920cb2755128a26c8c28905 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbd15bd44c9d1a77b6aa08f35c0af6d795baae915920cb2755128a26c8c28905
Size

2.0MB
Sample

220921-mgd82abfgp
MD5

f80b7dfaafe4d604fe4ad3d3c90437da
SHA1

da7530c52bc5e431c9f3546bc0ccb4d6e43b02f6
SHA256

fbd15bd44c9d1a77b6aa08f35c0af6d795baae915920cb2755128a26c8c28905
SHA512

7a6e662ffbb8b0c4c95480f6bf780b1951a2f6513cd47c552df072e312a893416448009bd9b50a478a5c6e5cf9499cc33bf2cdd882ee8a6e7719b1d830cd1d00
SSDEEP

49152:dwYmoNnrC/F7NxWD6h+L98uQX/abDs/hDhgyIQLREA:dvHnrujkg/3/hfR

Score

8^/10

Malware Config

Targets

- Target
  
  fbd15bd44c9d1a77b6aa08f35c0af6d795baae915920cb2755128a26c8c28905
- Size
  
  2.0MB
- MD5
  
  f80b7dfaafe4d604fe4ad3d3c90437da
- SHA1
  
  da7530c52bc5e431c9f3546bc0ccb4d6e43b02f6
- SHA256
  
  fbd15bd44c9d1a77b6aa08f35c0af6d795baae915920cb2755128a26c8c28905
- SHA512
  
  7a6e662ffbb8b0c4c95480f6bf780b1951a2f6513cd47c552df072e312a893416448009bd9b50a478a5c6e5cf9499cc33bf2cdd882ee8a6e7719b1d830cd1d00
- SSDEEP
  
  49152:dwYmoNnrC/F7NxWD6h+L98uQX/abDs/hDhgyIQLREA:dvHnrujkg/3/hfR
Score

8^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2