8be92251656a73ae1c8189089d7a12e2333c443160e4bceddfafca13422c57af | Triage

Sharing

General

Target

5414e91ee8d1a2bc86d5a7b949d6b984
Size

1000KB
Sample

240111-vhha3sbhfl
MD5

5414e91ee8d1a2bc86d5a7b949d6b984
SHA1

c128b23059d2d6da6c2e7084f34737e1006e2a22
SHA256

8be92251656a73ae1c8189089d7a12e2333c443160e4bceddfafca13422c57af
SHA512

92355b61a7f838bfe9f5c050d6fa41a68543ec1867dfa5244450f5032ee0be244665a721036e01f332f0de7947261a31c2a26da4ea8713be7be3aaf68619dcce
SSDEEP

24576:AU44WqjjzmAuDHwJYvved+1B+5vMiqt0gj2ed:AU4TkzmA6HwiqOL

Score

7^/10

Malware Config

Targets

- Target
  
  5414e91ee8d1a2bc86d5a7b949d6b984
- Size
  
  1000KB
- MD5
  
  5414e91ee8d1a2bc86d5a7b949d6b984
- SHA1
  
  c128b23059d2d6da6c2e7084f34737e1006e2a22
- SHA256
  
  8be92251656a73ae1c8189089d7a12e2333c443160e4bceddfafca13422c57af
- SHA512
  
  92355b61a7f838bfe9f5c050d6fa41a68543ec1867dfa5244450f5032ee0be244665a721036e01f332f0de7947261a31c2a26da4ea8713be7be3aaf68619dcce
- SSDEEP
  
  24576:AU44WqjjzmAuDHwJYvved+1B+5vMiqt0gj2ed:AU4TkzmA6HwiqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2