c97d01aefcc573f6c88e2908c46f16a1cd55e0219a6718b1a02eb0ef99fef0c4 | Triage

Sharing

General

Target

47881bd003a16814776ddea77833ecfe
Size

1000KB
Sample

240107-ak1j8aahak
MD5

47881bd003a16814776ddea77833ecfe
SHA1

5e56237c5005a5a2bdc41d17ee0e6cf75f4bee1f
SHA256

c97d01aefcc573f6c88e2908c46f16a1cd55e0219a6718b1a02eb0ef99fef0c4
SHA512

5786c8c0bb00cf8e70ff4bc244af78a699f5c84635b8652ae371c3af94c60360b51249a005aa02885f5bd6113bfef0e2b3a7ac751643293be7d373d2d398f183
SSDEEP

24576:BM6gAJtFF8CjPV1ZIbzeuXJJfJkDiU2uAPKAWCzwXs5AbRcEn8TXhXnlZ1RnJsti:6R82FaXexqOL

Score

7^/10

Malware Config

Targets

- Target
  
  47881bd003a16814776ddea77833ecfe
- Size
  
  1000KB
- MD5
  
  47881bd003a16814776ddea77833ecfe
- SHA1
  
  5e56237c5005a5a2bdc41d17ee0e6cf75f4bee1f
- SHA256
  
  c97d01aefcc573f6c88e2908c46f16a1cd55e0219a6718b1a02eb0ef99fef0c4
- SHA512
  
  5786c8c0bb00cf8e70ff4bc244af78a699f5c84635b8652ae371c3af94c60360b51249a005aa02885f5bd6113bfef0e2b3a7ac751643293be7d373d2d398f183
- SSDEEP
  
  24576:BM6gAJtFF8CjPV1ZIbzeuXJJfJkDiU2uAPKAWCzwXs5AbRcEn8TXhXnlZ1RnJsti:6R82FaXexqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2