e2c9082996f577f3950870f67a74a5077fade13d7e73c7831115189837429cf3 | Triage

Sharing

General

Target

cracked_rust.exe
Size

18.4MB
Sample

230104-rsf9zsbg6y
MD5

56e7a56b0c107e646b3c9daa762b41f6
SHA1

45c01380dbff635a6ebbd7c6f73fc101193d2156
SHA256

e2c9082996f577f3950870f67a74a5077fade13d7e73c7831115189837429cf3
SHA512

39f9be97bddff5175156020afff003a1193b3c213c2b44e2d7a647556f2d1829fb8454c35781632fc80dca79f9f788a1848adb289aa0c4f83c6077115683cec0
SSDEEP

393216:T2EYQ6yLwMTqZmiV3YTgzDJWmtrB2eWsTUVCgzo6isV6QleCD4X:J6uKm8YTiD3t4ITEKb+C

Score

6^/10

Malware Config

Targets

- Target
  
  cracked_rust.exe
- Size
  
  18.4MB
- MD5
  
  56e7a56b0c107e646b3c9daa762b41f6
- SHA1
  
  45c01380dbff635a6ebbd7c6f73fc101193d2156
- SHA256
  
  e2c9082996f577f3950870f67a74a5077fade13d7e73c7831115189837429cf3
- SHA512
  
  39f9be97bddff5175156020afff003a1193b3c213c2b44e2d7a647556f2d1829fb8454c35781632fc80dca79f9f788a1848adb289aa0c4f83c6077115683cec0
- SSDEEP
  
  393216:T2EYQ6yLwMTqZmiV3YTgzDJWmtrB2eWsTUVCgzo6isV6QleCD4X:J6uKm8YTiD3t4ITEKb+C
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2