008499ada9553b93f08c2d678a617afa0210e9c4ccb54dbde3451ccd74d5e343 | Triage

Sharing

General

Target

008499ada9553b93f08c2d678a617afa0210e9c4ccb54dbde3451ccd74d5e343
Size

908KB
Sample

221030-q99gesddb7
MD5

92a01f97199b6c12fdad7b2714aa2340
SHA1

cc2a3fe0696bcc514d9c6f211f372bd0e670e7ec
SHA256

008499ada9553b93f08c2d678a617afa0210e9c4ccb54dbde3451ccd74d5e343
SHA512

50d553b5f05704d87780eee59e5bae664df1e410223626302524e6cf4984a5c3e5a249a5754c0fd51198a6c371ed4384b89c7baf4efbbaf0d8d70da2a2427abe
SSDEEP

24576:KwHvxDr3oiXaVYY4SfUCFI4Fl7SUoJ02ojp0sQOK7V3MOR/Z:Kw6iXuztxvPdoJ02oS/rL

Score

8^/10

Malware Config

Targets

- Target
  
  008499ada9553b93f08c2d678a617afa0210e9c4ccb54dbde3451ccd74d5e343
- Size
  
  908KB
- MD5
  
  92a01f97199b6c12fdad7b2714aa2340
- SHA1
  
  cc2a3fe0696bcc514d9c6f211f372bd0e670e7ec
- SHA256
  
  008499ada9553b93f08c2d678a617afa0210e9c4ccb54dbde3451ccd74d5e343
- SHA512
  
  50d553b5f05704d87780eee59e5bae664df1e410223626302524e6cf4984a5c3e5a249a5754c0fd51198a6c371ed4384b89c7baf4efbbaf0d8d70da2a2427abe
- SSDEEP
  
  24576:KwHvxDr3oiXaVYY4SfUCFI4Fl7SUoJ02ojp0sQOK7V3MOR/Z:Kw6iXuztxvPdoJ02oS/rL
Score

8^/10
- Executes dropped EXE
- Drops file in System32 directory
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2