3ab638faa7d125d66237d98c6f21346928bc3e029eac785480b540f567e67d5b | Triage

Sharing

General

Target

3ab638faa7d125d66237d98c6f21346928bc3e029eac785480b540f567e67d5b
Size

6.3MB
Sample

221202-af2lqahe9s
MD5

944246338b59f8cebc45970a08e9477a
SHA1

f3884034b958f64fd92a37f28d886b2aa0ceeb17
SHA256

3ab638faa7d125d66237d98c6f21346928bc3e029eac785480b540f567e67d5b
SHA512

f2b36a33f223fb1cc5cd504a32e8eac4291c1d3ea2a289a5b8bcde922269141024071bd7d6148c10359d9b66061768218869cf0b7dfc58a6ba79b2824890744a
SSDEEP

196608:deSXCQEZ1qu+KE9PNtqPYhmHYpxdUl3i1zwy6:ISXCQsihFfqwhMYrdUYNwy6

Score

5^/10

Malware Config

Targets

- Target
  
  3ab638faa7d125d66237d98c6f21346928bc3e029eac785480b540f567e67d5b
- Size
  
  6.3MB
- MD5
  
  944246338b59f8cebc45970a08e9477a
- SHA1
  
  f3884034b958f64fd92a37f28d886b2aa0ceeb17
- SHA256
  
  3ab638faa7d125d66237d98c6f21346928bc3e029eac785480b540f567e67d5b
- SHA512
  
  f2b36a33f223fb1cc5cd504a32e8eac4291c1d3ea2a289a5b8bcde922269141024071bd7d6148c10359d9b66061768218869cf0b7dfc58a6ba79b2824890744a
- SSDEEP
  
  196608:deSXCQEZ1qu+KE9PNtqPYhmHYpxdUl3i1zwy6:ISXCQsihFfqwhMYrdUYNwy6
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2