General

  • Target

    60adf1568856811d68efe283fec87a5f5f20bc028d9d46cdd973c10da9a1f16a

  • Size

    1.8MB

  • Sample

    231205-fzrthshc8w

  • MD5

    7b5d1119c00d63ca3eb61f9e9d4c9fcd

  • SHA1

    9cd4e6d273e78907c3ada29abbc0c8e568e013f0

  • SHA256

    60adf1568856811d68efe283fec87a5f5f20bc028d9d46cdd973c10da9a1f16a

  • SHA512

    36e8cb3b9027bf8bd33636b1fdf206d2133f0c7eaf16c1519a9c55ee0e9535ada338969d76536ae1555bd097721e8403a89d4fbe4b1491e5557963ab6bd054de

  • SSDEEP

    49152:tCp0GTaA57POXW792BJNdSvg0hKspDoY:tg0GTaU7POXq92BJN8Ksp

Score
8/10

Malware Config

Targets

    • Target

      60adf1568856811d68efe283fec87a5f5f20bc028d9d46cdd973c10da9a1f16a

    • Size

      1.8MB

    • MD5

      7b5d1119c00d63ca3eb61f9e9d4c9fcd

    • SHA1

      9cd4e6d273e78907c3ada29abbc0c8e568e013f0

    • SHA256

      60adf1568856811d68efe283fec87a5f5f20bc028d9d46cdd973c10da9a1f16a

    • SHA512

      36e8cb3b9027bf8bd33636b1fdf206d2133f0c7eaf16c1519a9c55ee0e9535ada338969d76536ae1555bd097721e8403a89d4fbe4b1491e5557963ab6bd054de

    • SSDEEP

      49152:tCp0GTaA57POXW792BJNdSvg0hKspDoY:tg0GTaU7POXq92BJN8Ksp

    Score
    8/10
    • Blocklisted process makes network request

    • Stops running service(s)

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks