General
-
Target
4647c7efb379555b8d5174b45830eda2
-
Size
1000KB
-
Sample
240106-p5a8dshhg4
-
MD5
4647c7efb379555b8d5174b45830eda2
-
SHA1
044a2cd8bf90297079b310cfbd5660ef85db8855
-
SHA256
86dcc5af9f54e8578e3b5aa2e2c772dd82df39d952600cc2255916f436d86f00
-
SHA512
42b4564535c599a759ea29bac3c45b833d57306e92d0f0abca3a0d1c09cc9eaffa9a030bad8b8bbb0965cb837f433131a6c8755cb876ce173d436abe1ca4bae6
-
SSDEEP
24576:O5i0/K2qA8TG66VTzjN7JZU1B+5vMiqt0gj2ed:O5ihhA5VfjhGqOL
Static task
static1
Behavioral task
behavioral1
Sample
4647c7efb379555b8d5174b45830eda2.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4647c7efb379555b8d5174b45830eda2.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
4647c7efb379555b8d5174b45830eda2
-
Size
1000KB
-
MD5
4647c7efb379555b8d5174b45830eda2
-
SHA1
044a2cd8bf90297079b310cfbd5660ef85db8855
-
SHA256
86dcc5af9f54e8578e3b5aa2e2c772dd82df39d952600cc2255916f436d86f00
-
SHA512
42b4564535c599a759ea29bac3c45b833d57306e92d0f0abca3a0d1c09cc9eaffa9a030bad8b8bbb0965cb837f433131a6c8755cb876ce173d436abe1ca4bae6
-
SSDEEP
24576:O5i0/K2qA8TG66VTzjN7JZU1B+5vMiqt0gj2ed:O5ihhA5VfjhGqOL
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-