6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

6f76a9a447...JC.exe

windows7-x64

7

6f76a9a447...JC.exe

windows10-2004-x64

7

Sharing

General

Target

6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248_JC.exe
Size

1.4MB
Sample

231010-waeqnafb4x
MD5

931396125b7a8f93333be3738da15ca8
SHA1

ca01aa1a8b599d7a1392aeacdbf7ebc0e0fd530c
SHA256

6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248
SHA512

de79e6b0d056fa8352a92209283c8903ac34ec0515d34b1cd3be1c6f0561c961dcef249356bc887816c451969bf22cf0ce92c5ce19b3cfa65cfed57c55109632
SSDEEP

24576:eZmBzE7Ej+LmMRI9y33nFWKq8WucI+9vrc6NlrBe7pyIvR5V1e:6mQEj+TI9y33ndcI+9vrcode1yWRP1e

Score

7^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248_JC.exe

Resource

win7-20230831-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248_JC.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248_JC.exe
- Size
  
  1.4MB
- MD5
  
  931396125b7a8f93333be3738da15ca8
- SHA1
  
  ca01aa1a8b599d7a1392aeacdbf7ebc0e0fd530c
- SHA256
  
  6f76a9a4473f09b8496ad65ca63ffec2c1a567417e94ca082eb3f5de82137248
- SHA512
  
  de79e6b0d056fa8352a92209283c8903ac34ec0515d34b1cd3be1c6f0561c961dcef249356bc887816c451969bf22cf0ce92c5ce19b3cfa65cfed57c55109632
- SSDEEP
  
  24576:eZmBzE7Ej+LmMRI9y33nFWKq8WucI+9vrc6NlrBe7pyIvR5V1e:6mQEj+TI9y33ndcI+9vrcode1yWRP1e
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtCreateThreadExHideFromDebugger
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy