558d8a2f1633831054c6d2afff811cf7478f0abf03aafaea2c8170ade07f589a | Triage

Sharing

General

Target

44c71adaf760ce0b29b533f723f59653
Size

242KB
Sample

231225-31mbraahbm
MD5

44c71adaf760ce0b29b533f723f59653
SHA1

37574242186b684cb828dc467d24af7cdedd73f6
SHA256

558d8a2f1633831054c6d2afff811cf7478f0abf03aafaea2c8170ade07f589a
SHA512

065088bef676615ef45548a10d50a35399d350792874d7d23380f720492e9981b7cb62f33124ec98320fffa631b640468b67d3fc04676df36a80c5aad881926d
SSDEEP

6144:6OH0Mw/90/gbIVdQqE6CtzAZMeVUDyr9AobcFCEsi4Wd:6xMauZQq2BAZdVUDyr9RIF7d

Score

7^/10

Malware Config

Targets

- Target
  
  44c71adaf760ce0b29b533f723f59653
- Size
  
  242KB
- MD5
  
  44c71adaf760ce0b29b533f723f59653
- SHA1
  
  37574242186b684cb828dc467d24af7cdedd73f6
- SHA256
  
  558d8a2f1633831054c6d2afff811cf7478f0abf03aafaea2c8170ade07f589a
- SHA512
  
  065088bef676615ef45548a10d50a35399d350792874d7d23380f720492e9981b7cb62f33124ec98320fffa631b640468b67d3fc04676df36a80c5aad881926d
- SSDEEP
  
  6144:6OH0Mw/90/gbIVdQqE6CtzAZMeVUDyr9AobcFCEsi4Wd:6xMauZQq2BAZdVUDyr9RIF7d
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2