Overview

overview

7

Static

static

267283c546...df.exe

windows7-x64

7

267283c546...df.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    267283c54636223e668e9ff38a81e88f86f3c5bdce042674a7854e1e3a5e67df

  • Size

    2.0MB

  • Sample

    221127-hhlbhsff88

  • MD5

    3149f3fe3b797531c3d6aa6404f60f3f

  • SHA1

    617dfc3a80440ab537d69689b8423e3b9537e35d

  • SHA256

    267283c54636223e668e9ff38a81e88f86f3c5bdce042674a7854e1e3a5e67df

  • SHA512

    41a55a3445fc8bcddb230f921c6317a26fab458dec950be0399057230eded49ebaab879bb50f6d6595afbc181b1aae3fc601d628991966782e253bddfe288051

  • SSDEEP

    49152:INmVPXbDrWqKjGwa/N9Y7PBINaLiTLtDfqt9i4OMCpA:IAF3rvUGwu9Y75IN9StI4O

Score
7/10
agilenet

Malware Config

Targets

    • Target

      267283c54636223e668e9ff38a81e88f86f3c5bdce042674a7854e1e3a5e67df

    • Size

      2.0MB

    • MD5

      3149f3fe3b797531c3d6aa6404f60f3f

    • SHA1

      617dfc3a80440ab537d69689b8423e3b9537e35d

    • SHA256

      267283c54636223e668e9ff38a81e88f86f3c5bdce042674a7854e1e3a5e67df

    • SHA512

      41a55a3445fc8bcddb230f921c6317a26fab458dec950be0399057230eded49ebaab879bb50f6d6595afbc181b1aae3fc601d628991966782e253bddfe288051

    • SSDEEP

      49152:INmVPXbDrWqKjGwa/N9Y7PBINaLiTLtDfqt9i4OMCpA:IAF3rvUGwu9Y75IN9StI4O

    Score
    7/10
    agilenet

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks