bb152c699a74fe4d135a24ba52f7a03469230856451714e342ff20b8e6214d57 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

ocr (3).png

windows10-1703-x64

7

Resubmissions

24/11/2023, 15:10

231124-skd1bsda5x 7

24/11/2023, 14:56

231124-sbfgssch41 7

Sharing

General

Target

ocr (3).png
Size

315KB
Sample

231124-skd1bsda5x
MD5

77624b71dfea012975b9e37dcf71b35b
SHA1

574c7c0a5fbf31fb017f801bb620b21d59d9e88f
SHA256

bb152c699a74fe4d135a24ba52f7a03469230856451714e342ff20b8e6214d57
SHA512

bab42711764c9bc2ed634f6208d18ac6c0a324403170dbfcd15e59f053a6361b2d3a8614515aaa396f5e43c424eaa15efe3dbe4c94922d5f996ea8585c5b18db
SSDEEP

6144:KS3cHmMsjjHyjwytqd+qwITYW2MNzJ1ahVOfHOl3ou/Hnb:XcLcWEpd2dWRUwHOdZ/7

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

ocr (3).png

Resource

win10-20231023-en

windows10-1703-x64

15 signatures

1800 seconds

Malware Config

Targets

- Target
  
  ocr (3).png
- Size
  
  315KB
- MD5
  
  77624b71dfea012975b9e37dcf71b35b
- SHA1
  
  574c7c0a5fbf31fb017f801bb620b21d59d9e88f
- SHA256
  
  bb152c699a74fe4d135a24ba52f7a03469230856451714e342ff20b8e6214d57
- SHA512
  
  bab42711764c9bc2ed634f6208d18ac6c0a324403170dbfcd15e59f053a6361b2d3a8614515aaa396f5e43c424eaa15efe3dbe4c94922d5f996ea8585c5b18db
- SSDEEP
  
  6144:KS3cHmMsjjHyjwytqd+qwITYW2MNzJ1ahVOfHOl3ou/Hnb:XcLcWEpd2dWRUwHOdZ/7
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy