7ebeb723d7c034e7671bc42f5a9485986743758b33116778fd21b97c24918dea | Triage

Sharing

General

Target

0a76ed353fd0e7709b4db5db07c9f546
Size

1000KB
Sample

231230-b48wdacgak
MD5

0a76ed353fd0e7709b4db5db07c9f546
SHA1

6c0e10a6e0b5758920d64629d938a82fde4cf84c
SHA256

7ebeb723d7c034e7671bc42f5a9485986743758b33116778fd21b97c24918dea
SHA512

b6947a53a71271eb77ef9701411814b6baed92abdc86b2cfcdc17666875ea2a64fac89b38ddea193ebdc47a194358ca0d5c496a7fa808b48444c550ec6c3676c
SSDEEP

24576:djMuCxhfhHzC+F9++S5DvRUInLwJpzvvdfRt3rg1B+5vMiqt0gj2ed:djMuyiI9vvbZeqOL

Score

7^/10

Malware Config

Targets

- Target
  
  0a76ed353fd0e7709b4db5db07c9f546
- Size
  
  1000KB
- MD5
  
  0a76ed353fd0e7709b4db5db07c9f546
- SHA1
  
  6c0e10a6e0b5758920d64629d938a82fde4cf84c
- SHA256
  
  7ebeb723d7c034e7671bc42f5a9485986743758b33116778fd21b97c24918dea
- SHA512
  
  b6947a53a71271eb77ef9701411814b6baed92abdc86b2cfcdc17666875ea2a64fac89b38ddea193ebdc47a194358ca0d5c496a7fa808b48444c550ec6c3676c
- SSDEEP
  
  24576:djMuCxhfhHzC+F9++S5DvRUInLwJpzvvdfRt3rg1B+5vMiqt0gj2ed:djMuyiI9vvbZeqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2