d303699360fca2751b8ddea0a7e32e50f031682e8af654c54b6f2aee05c4576e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8bf8aabd6e2977478558a3907ecee01.bin
Size

5.9MB
Sample

230328-cvnphsad3v
MD5

91fab8413bde884db4ff2882f68d1169
SHA1

20e3a9899f08f404a23f3201377fdb48cbe6454e
SHA256

d303699360fca2751b8ddea0a7e32e50f031682e8af654c54b6f2aee05c4576e
SHA512

3139a90440175e31c62e65b10ff531d56a98578a6fe44ecc48347c590d60a603943b388f851ef8df17ca7df958aa036e8c5798b0c124f6d466035e8452be06e5
SSDEEP

98304:jt+ed5mLxInQIbibgaog4pecNQgaojCjD5BKkRo6xIVr/C1pHY87/aNWhqRO5H:jt+m5jnQIbi8JgESgJjCf7Ro6qOp4+62

Score

5^/10

Malware Config

Targets

- Target
  
  4eaf953774a436783639dfd6255849ba86f7ca21141dbc1bddb8edb1712b0b2b.exe
- Size
  
  6.0MB
- MD5
  
  c8bf8aabd6e2977478558a3907ecee01
- SHA1
  
  439191680d97ad4fe8137ba46f2728d987ca7d7e
- SHA256
  
  4eaf953774a436783639dfd6255849ba86f7ca21141dbc1bddb8edb1712b0b2b
- SHA512
  
  ddc8959d27de41537d8af69cb374384c05248da61f5562b32671e3634c9329da69d4c1fbd2f60d9978c3d3313bfe68c16150d3614b55b62d0919eae0e2271c66
- SSDEEP
  
  196608:y1qbwWwiMiPF+x68kh3Y9TFNlDgKS8okdMSOX:CqbwWvPEs8S3YTXUKS8oVX
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2