a5167983260e1f9ba0268a45f77a918321d6034dc3a787eadaa12140e1724868 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

b8dd4a784d...6e.zip

windows10-2004-x64

1

b8dd4a784d...6e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e.zip
Size

1.2MB
Sample

231211-efj4wsccdj
MD5

067020e53b4aade221123617f70a0b08
SHA1

930d6290e35c996d22330aa4f5d6cb5a30b0d088
SHA256

a5167983260e1f9ba0268a45f77a918321d6034dc3a787eadaa12140e1724868
SHA512

d1b0693cb61bf42752d6bc7cca178da0c55ee719761f302405815af782c611a019179163db5ccbdff972f21e256ed3382e50bc48e8bccab9e6f82cd0c4131ca0
SSDEEP

24576:51KxTtEp7ziEyK4Sj/uAhCJjLuW+oixEaVjQYBlHgb1TfY+D+er4:51atO+K4SjuAhxW+oixEaVMhXKeU

Score

8^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e.zip

Resource

win10v2004-20231127-en

windows10-2004-x64

12 signatures

1800 seconds

Behavioral task

behavioral2

Sample

b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e.exe

Resource

win10v2004-20231130-en

windows10-2004-x64

7 signatures

1800 seconds

Malware Config

Targets

- Target
  
  b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e.zip
- Size
  
  1.2MB
- MD5
  
  067020e53b4aade221123617f70a0b08
- SHA1
  
  930d6290e35c996d22330aa4f5d6cb5a30b0d088
- SHA256
  
  a5167983260e1f9ba0268a45f77a918321d6034dc3a787eadaa12140e1724868
- SHA512
  
  d1b0693cb61bf42752d6bc7cca178da0c55ee719761f302405815af782c611a019179163db5ccbdff972f21e256ed3382e50bc48e8bccab9e6f82cd0c4131ca0
- SSDEEP
  
  24576:51KxTtEp7ziEyK4Sj/uAhCJjLuW+oixEaVjQYBlHgb1TfY+D+er4:51atO+K4SjuAhxW+oixEaVMhXKeU
Score

1^/10
behavioral1
- Target
  
  b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e.exe
- Size
  
  1.2MB
- MD5
  
  9651ede72bae625a1acf243c43e46c15
- SHA1
  
  918c2e7da8a6c5c6dd57eb96899650fafb693e1e
- SHA256
  
  b8dd4a784dda6eba1e23db2b1a8efe64c213136ea8d92680324af4bb2035416e
- SHA512
  
  f52c6b9edc14eb7b56a91838f92a749575a1f79db619a5d713664aad69d3bc872fc36f0fdd450c00863d03ec31df8ee58dccb8ad95838438f1c36db62e5902d6
- SSDEEP
  
  24576:RPb4jQUDvbnJ+CB0cC7crkA/Pj/aJrU76tO4EYGI8CpIiGVbRbqU9h4W4diN/U:J+vACa0kkzanOTYGI8C+vVbR2UHaGM
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy