5e2e1785a7e730427497e185e85d00bad9807e864ec3aa235c489470988186eb | Triage

Sharing

General

Target

3f033f2862105f8893f89d5b16476036
Size

1000KB
Sample

240103-zbqq4acdg7
MD5

3f033f2862105f8893f89d5b16476036
SHA1

0c9687d30172185331182f108819e61bd9d55de6
SHA256

5e2e1785a7e730427497e185e85d00bad9807e864ec3aa235c489470988186eb
SHA512

dd7766c5d6974089b086532a1d3e241e06e8a83336e41dddac56b12e419e88a75a1efac722bc91436791408fb3a016518076b836e282128764f88107f70fe3a7
SSDEEP

24576:EqfOgMUZVAjg1lVusez1B+5vMiqt0gj2ed:lfOi/ATqOL

Score

7^/10

Malware Config

Targets

- Target
  
  3f033f2862105f8893f89d5b16476036
- Size
  
  1000KB
- MD5
  
  3f033f2862105f8893f89d5b16476036
- SHA1
  
  0c9687d30172185331182f108819e61bd9d55de6
- SHA256
  
  5e2e1785a7e730427497e185e85d00bad9807e864ec3aa235c489470988186eb
- SHA512
  
  dd7766c5d6974089b086532a1d3e241e06e8a83336e41dddac56b12e419e88a75a1efac722bc91436791408fb3a016518076b836e282128764f88107f70fe3a7
- SSDEEP
  
  24576:EqfOgMUZVAjg1lVusez1B+5vMiqt0gj2ed:lfOi/ATqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2