1bed47ad74390ce8a0851540d51dff6f0ab4ece886fa498caa46dba19472e33d | Triage

Sharing

General

Target

1bed47ad74390ce8a0851540d51dff6f0ab4ece886fa498caa46dba19472e33d
Size

3.9MB
Sample

230818-yb432sdb96
MD5

af58c0932b4f8dc9d5b42d082e54a1c4
SHA1

0e08f0ed47bfba13b331760558d5729563e02bee
SHA256

1bed47ad74390ce8a0851540d51dff6f0ab4ece886fa498caa46dba19472e33d
SHA512

fd27a582e1949138d1f20c666da8efcd5bf80d92dc02409c61c2677564f09aa6acd381103a38b359e73fe1f497787b587a9a23c9f30e5ea58984b087a594fedc
SSDEEP

98304:W8REG2CFkZenqAd2JwB3hVzcpm13KI2qmKuLlly:FREcSZ+td2JLpi6I2qYy

Score

7^/10

Malware Config

Targets

- Target
  
  1bed47ad74390ce8a0851540d51dff6f0ab4ece886fa498caa46dba19472e33d
- Size
  
  3.9MB
- MD5
  
  af58c0932b4f8dc9d5b42d082e54a1c4
- SHA1
  
  0e08f0ed47bfba13b331760558d5729563e02bee
- SHA256
  
  1bed47ad74390ce8a0851540d51dff6f0ab4ece886fa498caa46dba19472e33d
- SHA512
  
  fd27a582e1949138d1f20c666da8efcd5bf80d92dc02409c61c2677564f09aa6acd381103a38b359e73fe1f497787b587a9a23c9f30e5ea58984b087a594fedc
- SSDEEP
  
  98304:W8REG2CFkZenqAd2JwB3hVzcpm13KI2qmKuLlly:FREcSZ+td2JLpi6I2qYy
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2