f906e2ac9c088e424e6eed8757ab50922a41965c5f332236c730fb69713adcd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7bb0b210363a09a2f508150f7adb077e
Size

241KB
Sample

231226-tnjweshcbk
MD5

7bb0b210363a09a2f508150f7adb077e
SHA1

8e499c5856b64a3d16cfffd07f990486a2d02bdb
SHA256

f906e2ac9c088e424e6eed8757ab50922a41965c5f332236c730fb69713adcd4
SHA512

6debc07156ad27d0e32a77235444a026719b0aeead4ad84543e9b35964139c4d11aba904a4b1b26977e2ddb3f5cdaeeace484729edee3b92ce1982da199102a9
SSDEEP

6144:qEwa7JxXIoAE6rCtEXDdqJ239pns4gZKWV1qxYLHeRaGy0:9IoA7rCtEXZki9Vs4gZny6LH6B

Score

7^/10

Malware Config

Targets

- Target
  
  7bb0b210363a09a2f508150f7adb077e
- Size
  
  241KB
- MD5
  
  7bb0b210363a09a2f508150f7adb077e
- SHA1
  
  8e499c5856b64a3d16cfffd07f990486a2d02bdb
- SHA256
  
  f906e2ac9c088e424e6eed8757ab50922a41965c5f332236c730fb69713adcd4
- SHA512
  
  6debc07156ad27d0e32a77235444a026719b0aeead4ad84543e9b35964139c4d11aba904a4b1b26977e2ddb3f5cdaeeace484729edee3b92ce1982da199102a9
- SSDEEP
  
  6144:qEwa7JxXIoAE6rCtEXDdqJ239pns4gZKWV1qxYLHeRaGy0:9IoA7rCtEXZki9Vs4gZny6LH6B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2