Overview

overview

7

Static

static

3

57381393c3...ed.exe

windows7-x64

7

57381393c3...ed.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    57381393c37626dcf33fc2961d436eed

  • Size

    506KB

  • Sample

    240112-xeq5xsebh8

  • MD5

    57381393c37626dcf33fc2961d436eed

  • SHA1

    559de17d4a63c404fd8c1df091e1184614a1b5d8

  • SHA256

    1213bbcd26070d84613a0d815feddac40740ce0f81aaa7a0663108d22acac37e

  • SHA512

    9bf3cf8882f4d15a3e86a0ffb52057a08e238784e187f409722e169804ad50732556973e7856371cba104cb582de24cb8cde951957e34d2290b6073aa424e597

  • SSDEEP

    12288:/jCJnrP1w9ZJ+Fjm5wav6DHQzroWoeyKMC6veqbQcSOQxagwBM:/j4nrP1I+jTQz8WQKj6vLXSO6wBM

Score
7/10

Malware Config

Targets

    • Target

      57381393c37626dcf33fc2961d436eed

    • Size

      506KB

    • MD5

      57381393c37626dcf33fc2961d436eed

    • SHA1

      559de17d4a63c404fd8c1df091e1184614a1b5d8

    • SHA256

      1213bbcd26070d84613a0d815feddac40740ce0f81aaa7a0663108d22acac37e

    • SHA512

      9bf3cf8882f4d15a3e86a0ffb52057a08e238784e187f409722e169804ad50732556973e7856371cba104cb582de24cb8cde951957e34d2290b6073aa424e597

    • SSDEEP

      12288:/jCJnrP1w9ZJ+Fjm5wav6DHQzroWoeyKMC6veqbQcSOQxagwBM:/j4nrP1I+jTQz8WQKj6vLXSO6wBM

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks