General

  • Target

    HURNER Schweisstechni L.L.C.exe

  • Size

    647KB

  • Sample

    231201-hlmczsfg5t

  • MD5

    52805a3c07ecc9bf6840e89bd0aa287e

  • SHA1

    c635295c2581d25e456e465ea2e99fb70ee3e53b

  • SHA256

    85800855fe13f4eabcc471486d2c267794ef62962f900bf4f4a80d6461913211

  • SHA512

    2a58414cdb1bd7ecbd88a1e27aaaf1b99f374cc7e70d5996eec2a2cae3825849c4dbf9767dee61dd8d9a07e86f40e9d9dd9ab0c8270a7d2c61b04b95d7cb1f67

  • SSDEEP

    12288:fBZEwWqf8chI/XEhBX9iugcjG31t30GvABWEuO4LIEtv29lZsDRn2:Dhkch9HEt303WEa20Rn2

Score
10/10

Malware Config

Targets

    • Target

      HURNER Schweisstechni L.L.C.exe

    • Size

      647KB

    • MD5

      52805a3c07ecc9bf6840e89bd0aa287e

    • SHA1

      c635295c2581d25e456e465ea2e99fb70ee3e53b

    • SHA256

      85800855fe13f4eabcc471486d2c267794ef62962f900bf4f4a80d6461913211

    • SHA512

      2a58414cdb1bd7ecbd88a1e27aaaf1b99f374cc7e70d5996eec2a2cae3825849c4dbf9767dee61dd8d9a07e86f40e9d9dd9ab0c8270a7d2c61b04b95d7cb1f67

    • SSDEEP

      12288:fBZEwWqf8chI/XEhBX9iugcjG31t30GvABWEuO4LIEtv29lZsDRn2:Dhkch9HEt303WEa20Rn2

    Score
    10/10
    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

    • Loads dropped DLL

    • Suspicious use of NtCreateThreadExHideFromDebugger

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks