aca8305dfe76c71ab68f45356bbf50fe90570ecc65dc0e566c053fd18a2e8b4d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12554be14b637871cedbb47ffc6d9676
Size

1000KB
Sample

231230-jf8jpsccgj
MD5

12554be14b637871cedbb47ffc6d9676
SHA1

97cc1215ba4927f0c32d731719632b9e1ff19dad
SHA256

aca8305dfe76c71ab68f45356bbf50fe90570ecc65dc0e566c053fd18a2e8b4d
SHA512

19f2a598bc9d9f859be81a9b472e76eba9bdf5b912d0da49c70ef215c0aedc0789d6cf58f8f81a3c9dd7c6161daf146e7c501bc9ae10df750098363fbd609bb0
SSDEEP

24576:wdc3lKGtUYF9m/JxWa11B+5vMiqt0gj2ed:i7yUUW5qOL

Score

7^/10

Malware Config

Targets

- Target
  
  12554be14b637871cedbb47ffc6d9676
- Size
  
  1000KB
- MD5
  
  12554be14b637871cedbb47ffc6d9676
- SHA1
  
  97cc1215ba4927f0c32d731719632b9e1ff19dad
- SHA256
  
  aca8305dfe76c71ab68f45356bbf50fe90570ecc65dc0e566c053fd18a2e8b4d
- SHA512
  
  19f2a598bc9d9f859be81a9b472e76eba9bdf5b912d0da49c70ef215c0aedc0789d6cf58f8f81a3c9dd7c6161daf146e7c501bc9ae10df750098363fbd609bb0
- SSDEEP
  
  24576:wdc3lKGtUYF9m/JxWa11B+5vMiqt0gj2ed:i7yUUW5qOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2