Resubmissions

26/01/2023, 16:35

230126-t3xe3aed59 10

26/01/2023, 15:42

230126-s5a46sec27 8

General

  • Target

    SetupApp_v6.7.1.zip

  • Size

    3.7MB

  • Sample

    230126-s5a46sec27

  • MD5

    661a7977269beb16de870cba8b21692a

  • SHA1

    3d1aa39371b5840cd1c614fe4ec0a93b189714ec

  • SHA256

    d49c678df0914e0855d29a855b37d39f0c745a507660ee10c1d1022140d3205c

  • SHA512

    70a029722dd6da4eb081bd311773d9d1441b8c5ded6b53048ecf5e138f50b772ea1f5501ae45e2b4064f100e8c6d8e311ba0b7fe410cdf53d87176d1942eebb0

  • SSDEEP

    98304:SVSKlwJybrqdhvSYNEhtOpegHxHOd7SdtkRS:e1atdhjaWvRH27rRS

Score
8/10

Malware Config

Targets

    • Target

      SetupApp_v6.7.1/SetupApp_v6.7.1.exe

    • Size

      642.0MB

    • MD5

      f21f9ca90199c531a8ed2ecdc4538f04

    • SHA1

      60c48fdd76d8ec0c0b519f4f581a98bca9839e18

    • SHA256

      4da47bbacd63b87770ba54c66d404906faec73a9f421342eb91c19408306e456

    • SHA512

      81f937ea5106d7310d37972efb9eb1f4a13e2adc5802a47444d2b0777643ef3dcaa08c28fd1e46bcf2fbde3994a35b5c8c78df4c8a8296b4bdf22ced2c322aa1

    • SSDEEP

      12288:QpWW9NRm4HmsdutOR1S688a2iPk4bFpDbp2O2l3egeH9mvYYOJa7BNBI0HzKN37a:A99hrR1GN1q

    Score
    8/10
    • Blocklisted process makes network request

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks