General

  • Target

    967548928.exe

  • Size

    7.5MB

  • Sample

    230917-swz2yadd96

  • MD5

    848186a88b0b2698fc6966c129b3f988

  • SHA1

    47d48802379460ab5ee2e31f57b7b4ecf88846f6

  • SHA256

    4381d4a66eb1f618508864f87c6da09c67cfea42e21070823326f1ee45fb7b36

  • SHA512

    50c59689cda8bfa0f85faf957db895dc65013511630ba9978d8c7024f083db8248d9ea47b7e8a54e500a8b120e7b6032f9735961cf2c480226c20432a13e46a8

  • SSDEEP

    98304:TOkNKDlogmxjvwTNWF+oVQVbsYb7smpc1aT9GvrVMv/cLUpJl7pUhGaZmCCTQJx+:at+gmxjvwTNh/hpL0KvZlWhGwjEQS

Score
7/10

Malware Config

Targets

    • Target

      967548928.exe

    • Size

      7.5MB

    • MD5

      848186a88b0b2698fc6966c129b3f988

    • SHA1

      47d48802379460ab5ee2e31f57b7b4ecf88846f6

    • SHA256

      4381d4a66eb1f618508864f87c6da09c67cfea42e21070823326f1ee45fb7b36

    • SHA512

      50c59689cda8bfa0f85faf957db895dc65013511630ba9978d8c7024f083db8248d9ea47b7e8a54e500a8b120e7b6032f9735961cf2c480226c20432a13e46a8

    • SSDEEP

      98304:TOkNKDlogmxjvwTNWF+oVQVbsYb7smpc1aT9GvrVMv/cLUpJl7pUhGaZmCCTQJx+:at+gmxjvwTNh/hpL0KvZlWhGwjEQS

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks