ffa7230edf0ecdbbc22144e73130e67b03f34a3e3cbf9a374f4003711166cffb | Triage

Sharing

General

Target

11196416126.zip
Size

7.1MB
Sample

230713-qydklsgh72
MD5

b81bf742144284872153c77a493ff797
SHA1

e199f8ad1db14b34f031b8f80dfc9123cb94c1e1
SHA256

ffa7230edf0ecdbbc22144e73130e67b03f34a3e3cbf9a374f4003711166cffb
SHA512

f2a037cde2e43ae0d64318b9058b363a5fcc846c345c2ce218d727bdb71551487d22330e5049808df59340aa3bf1d2f1619b34919391d9159eef3ac5a158b2a7
SSDEEP

196608:RAEX5ZDH6zY/huJzRdEK3fMPXMqKq+yk0TJB8Bg+zPQyd:RAInH6z8qgBKq39B82iPFd

Score

7^/10

Malware Config

Targets

- Target
  
  c768f8f0898caf0e32ef1eec3165f7702995d6def434f290616709cea2f43364
- Size
  
  7.6MB
- MD5
  
  97d5875fcf52e28f671b79b1e2a599de
- SHA1
  
  bf7398d03f41f1922c71edf9235a6e2566220bce
- SHA256
  
  c768f8f0898caf0e32ef1eec3165f7702995d6def434f290616709cea2f43364
- SHA512
  
  6576b891140954ab21bbe05752882bfbd7e48029c25a8dc230b609c7d3d6ef60f2c8458c7d3000853dea61ecae0cffd37c5ec9dbb19edd0477641e1ce506e000
- SSDEEP
  
  196608:B6PXJc+RQaFPFVHZUUetsHs2eRYKAvHxwIe8g7UU4Be:6XjegZYysPIHxve8gye
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2