c28d1c031314784ee4669e04c975ded43d12cf3cbbd21365483a63f311bb5198 | Triage

Sharing

General

Target

4737c06ec36981b3c5c0b3621eb6c765
Size

1000KB
Sample

240106-1cjjvaabc8
MD5

4737c06ec36981b3c5c0b3621eb6c765
SHA1

74b7a5193618d1c2ac55b427b8af874e283e405d
SHA256

c28d1c031314784ee4669e04c975ded43d12cf3cbbd21365483a63f311bb5198
SHA512

1c90094f6dcb95f2709ec94507e2c83f4d45231e9c2f2454870dc5e390e8a2fa1553c9ee8113fa886955dd2fb012623062468bb32f5e7b5521ee21d81fdc8510
SSDEEP

24576:p55ogyjoUZ4KMdNnQolmscUpOqbT31B+5vMiqt0gj2ed:j5oRjdMdmjsdp1PqOL

Score

7^/10

Malware Config

Targets

- Target
  
  4737c06ec36981b3c5c0b3621eb6c765
- Size
  
  1000KB
- MD5
  
  4737c06ec36981b3c5c0b3621eb6c765
- SHA1
  
  74b7a5193618d1c2ac55b427b8af874e283e405d
- SHA256
  
  c28d1c031314784ee4669e04c975ded43d12cf3cbbd21365483a63f311bb5198
- SHA512
  
  1c90094f6dcb95f2709ec94507e2c83f4d45231e9c2f2454870dc5e390e8a2fa1553c9ee8113fa886955dd2fb012623062468bb32f5e7b5521ee21d81fdc8510
- SSDEEP
  
  24576:p55ogyjoUZ4KMdNnQolmscUpOqbT31B+5vMiqt0gj2ed:j5oRjdMdmjsdp1PqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2