6087d41515fd415baa029415ac6112d823872f99076ee6ec04f397eeaf493d50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

lsm.exe
Size

1.4MB
Sample

230829-kyqbhsbe79
MD5

442193d89ab2fc62513af9858383f9cd
SHA1

65957c1e00eae4b1bf741449a0ce938cdf13bef8
SHA256

6087d41515fd415baa029415ac6112d823872f99076ee6ec04f397eeaf493d50
SHA512

d86c1f1148e006883b8d39576506f5c1dcef18a0f9de55e01aab95a855dbfd8b98e793bf9b80c5223f3a925d8c2eb15102ee47a6b6c52d277ef6bc1bc2b4fe69
SSDEEP

24576:bOpFBvpU7rj2MpvwBemHt1HQxhs0JDUi/UFsVS0GdI/Nilpu2t56+ocakIx:bOHBCnpv+v1HQxhs0JD/V2MiW2zwjx

Score

7^/10

Malware Config

Targets

- Target
  
  lsm.exe
- Size
  
  1.4MB
- MD5
  
  442193d89ab2fc62513af9858383f9cd
- SHA1
  
  65957c1e00eae4b1bf741449a0ce938cdf13bef8
- SHA256
  
  6087d41515fd415baa029415ac6112d823872f99076ee6ec04f397eeaf493d50
- SHA512
  
  d86c1f1148e006883b8d39576506f5c1dcef18a0f9de55e01aab95a855dbfd8b98e793bf9b80c5223f3a925d8c2eb15102ee47a6b6c52d277ef6bc1bc2b4fe69
- SSDEEP
  
  24576:bOpFBvpU7rj2MpvwBemHt1HQxhs0JDUi/UFsVS0GdI/Nilpu2t56+ocakIx:bOHBCnpv+v1HQxhs0JD/V2MiW2zwjx
Score

7^/10
- Executes dropped EXE
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1