dcbec7b1eeba2de23c87b2c44539b4a2421d880ff0fd2d66194a906dc73cc1fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcbec7b1eeba2de23c87b2c44539b4a2421d880ff0fd2d66194a906dc73cc1fe
Size

6.1MB
Sample

221226-17ty3ahb2t
MD5

917705dd2cbe49fdc73e02a1a4c72028
SHA1

1646aa0966f02eb72f0abd62ac0095db0d6d7e4f
SHA256

dcbec7b1eeba2de23c87b2c44539b4a2421d880ff0fd2d66194a906dc73cc1fe
SHA512

ca5f3894cd85a79c56e7203f9b95476d03fb10d8c87f544def5193f60649ed8d5d2dcf1f0853fb8a72648280397cbb6a908e285c9436fca69852c3fdf81b28f2
SSDEEP

196608:tF36cDVpvIoR9ALI9mQgQsiuerZnAS4Um:tpfDHIojBu6ZnR4U

Score

8^/10

Malware Config

Targets

- Target
  
  dcbec7b1eeba2de23c87b2c44539b4a2421d880ff0fd2d66194a906dc73cc1fe
- Size
  
  6.1MB
- MD5
  
  917705dd2cbe49fdc73e02a1a4c72028
- SHA1
  
  1646aa0966f02eb72f0abd62ac0095db0d6d7e4f
- SHA256
  
  dcbec7b1eeba2de23c87b2c44539b4a2421d880ff0fd2d66194a906dc73cc1fe
- SHA512
  
  ca5f3894cd85a79c56e7203f9b95476d03fb10d8c87f544def5193f60649ed8d5d2dcf1f0853fb8a72648280397cbb6a908e285c9436fca69852c3fdf81b28f2
- SSDEEP
  
  196608:tF36cDVpvIoR9ALI9mQgQsiuerZnAS4Um:tpfDHIojBu6ZnR4U
Score

8^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2