7faa171ff4796b95014ddf961cf9d2ada49ab36e548e2e5c6c4dcf4d9a3e2faa | Triage

Sharing

General

Target

50cd570e8fcc36a727e73ec8b35745f7
Size

1000KB
Sample

240110-rrv2rahahq
MD5

50cd570e8fcc36a727e73ec8b35745f7
SHA1

c6c7984247be7c1f6b3cd3abf34224f36c1ed674
SHA256

7faa171ff4796b95014ddf961cf9d2ada49ab36e548e2e5c6c4dcf4d9a3e2faa
SHA512

febe182f09ff8524c057b1c5f247af7776658870c4a914acdddb95bfcd05372ba25b2a8368994b6701f70746d5b4b0e8b0155692d59f7c16fc9fab72710194ff
SSDEEP

24576:nP7A2pC6wVZ53w/OKYvB58ZWecJI1B+5vMiqt0gj2ed:P7Ah3lKgEZWecJCqOL

Score

7^/10

Malware Config

Targets

- Target
  
  50cd570e8fcc36a727e73ec8b35745f7
- Size
  
  1000KB
- MD5
  
  50cd570e8fcc36a727e73ec8b35745f7
- SHA1
  
  c6c7984247be7c1f6b3cd3abf34224f36c1ed674
- SHA256
  
  7faa171ff4796b95014ddf961cf9d2ada49ab36e548e2e5c6c4dcf4d9a3e2faa
- SHA512
  
  febe182f09ff8524c057b1c5f247af7776658870c4a914acdddb95bfcd05372ba25b2a8368994b6701f70746d5b4b0e8b0155692d59f7c16fc9fab72710194ff
- SSDEEP
  
  24576:nP7A2pC6wVZ53w/OKYvB58ZWecJI1B+5vMiqt0gj2ed:P7Ah3lKgEZWecJCqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2