General

  • Target

    779980076ccd3314d7259160fe23e752

  • Size

    2.0MB

  • Sample

    231226-sepvmsadfr

  • MD5

    779980076ccd3314d7259160fe23e752

  • SHA1

    2625858b57b41de8075f5aa170d0f4a9027f700c

  • SHA256

    fe6d16ea99096b0377aaa619e19b4436f24c665f4304ffd9a42797f62ff53935

  • SHA512

    166d519abfce715106f7b952cc96698289feb953ffa0dfc2535077b1c3d9dc373fd25343e3c795601395badf09791878d2d9b10da7dfd9002892451d6ca2ee21

  • SSDEEP

    49152:DasRtL2RN9I3llVWzHTVfLcxGam/NEURZKzK2h:HmRoVETVzAGf/NzRZKm

Score
10/10

Malware Config

Targets

    • Target

      779980076ccd3314d7259160fe23e752

    • Size

      2.0MB

    • MD5

      779980076ccd3314d7259160fe23e752

    • SHA1

      2625858b57b41de8075f5aa170d0f4a9027f700c

    • SHA256

      fe6d16ea99096b0377aaa619e19b4436f24c665f4304ffd9a42797f62ff53935

    • SHA512

      166d519abfce715106f7b952cc96698289feb953ffa0dfc2535077b1c3d9dc373fd25343e3c795601395badf09791878d2d9b10da7dfd9002892451d6ca2ee21

    • SSDEEP

      49152:DasRtL2RN9I3llVWzHTVfLcxGam/NEURZKzK2h:HmRoVETVzAGf/NzRZKm

    Score
    10/10
    • SectopRAT

      SectopRAT is a remote access trojan first seen in November 2019.

    • SectopRAT payload

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks