General

  • Target

    a53629a8239e65ff0e472d0c58bd41b9.exe

  • Size

    1.7MB

  • Sample

    240107-x3gldsdcd2

  • MD5

    a53629a8239e65ff0e472d0c58bd41b9

  • SHA1

    17b3f36d30df35a86201f55eaa7e22bf002da086

  • SHA256

    e34efd3d9406be43f0ebdcec19114924d726493bc779ce83fc491b7b3be144b4

  • SHA512

    2d4b2cd4d288c6ddad8887a732ad74aede2ec977fff03909e0db330665f5cd55eab3272115cd45c611ec30621cf3dd0e38f15b4db96c2873645a6c1fad633286

  • SSDEEP

    49152:aQQMG8MY1Jra+jMbt0b/B1xht7f+eQJR8CtJzwyC:TQMnP3rapt0rBbht7f+eQJ6/

Score
10/10

Malware Config

Targets

    • Target

      a53629a8239e65ff0e472d0c58bd41b9.exe

    • Size

      1.7MB

    • MD5

      a53629a8239e65ff0e472d0c58bd41b9

    • SHA1

      17b3f36d30df35a86201f55eaa7e22bf002da086

    • SHA256

      e34efd3d9406be43f0ebdcec19114924d726493bc779ce83fc491b7b3be144b4

    • SHA512

      2d4b2cd4d288c6ddad8887a732ad74aede2ec977fff03909e0db330665f5cd55eab3272115cd45c611ec30621cf3dd0e38f15b4db96c2873645a6c1fad633286

    • SSDEEP

      49152:aQQMG8MY1Jra+jMbt0b/B1xht7f+eQJR8CtJzwyC:TQMnP3rapt0rBbht7f+eQJ6/

    Score
    10/10
    • Detected phishing page

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks