f10d2c23dc9187e0b2df3aaff64f6cb7b63366004629fe2294047dd0f43f77a2 | Triage

Sharing

General

Target

2d2ad4aee2a0888d7ab33c6582973683
Size

1000KB
Sample

231231-h6qwxahbb3
MD5

2d2ad4aee2a0888d7ab33c6582973683
SHA1

9cebf312038c87ac479f6cbd56584b03d5093989
SHA256

f10d2c23dc9187e0b2df3aaff64f6cb7b63366004629fe2294047dd0f43f77a2
SHA512

cf7ca8f57064d7c25c4fa26fd6a2e3d5f8aa3102e7752dadcea747e2fec2dc9b88780c6b421da7b62f6ab76fa24b3d48b9dbf8629065d2c8a4f381d83b41a469
SSDEEP

24576:K0h0E9CqRXDPqE+NGdWo1B+5vMiqt0gj2ed:K0+ECqRXjtpdlqOL

Score

7^/10

Malware Config

Targets

- Target
  
  2d2ad4aee2a0888d7ab33c6582973683
- Size
  
  1000KB
- MD5
  
  2d2ad4aee2a0888d7ab33c6582973683
- SHA1
  
  9cebf312038c87ac479f6cbd56584b03d5093989
- SHA256
  
  f10d2c23dc9187e0b2df3aaff64f6cb7b63366004629fe2294047dd0f43f77a2
- SHA512
  
  cf7ca8f57064d7c25c4fa26fd6a2e3d5f8aa3102e7752dadcea747e2fec2dc9b88780c6b421da7b62f6ab76fa24b3d48b9dbf8629065d2c8a4f381d83b41a469
- SSDEEP
  
  24576:K0h0E9CqRXDPqE+NGdWo1B+5vMiqt0gj2ed:K0+ECqRXjtpdlqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2