f203662a913d5098e3992adb1149ec6d51e0630ad9068c7aada05c24cfde2c53 | Triage

Sharing

General

Target

5803ecc0e58ceaaf7fae8fd93bda9fe3
Size

1000KB
Sample

240113-fd5hgsccer
MD5

5803ecc0e58ceaaf7fae8fd93bda9fe3
SHA1

573545a0ea1f8f1e295b52f2d2e640f91085f559
SHA256

f203662a913d5098e3992adb1149ec6d51e0630ad9068c7aada05c24cfde2c53
SHA512

f8362ccae6828eb668fde7e6c27c3da5c9aad0f380d867341096ff70e2e3c146f85aba7263c55e17bd4719bfd260ef8bc29025c41759c47a9e48298dd5bd5099
SSDEEP

24576:p70nUTYCj9g7RJAxiJHDUxyRf5i1B+5vMiqt0gj2ed:pInUcCj9gtJ1jUgRf5oqOL

Score

7^/10

Malware Config

Targets

- Target
  
  5803ecc0e58ceaaf7fae8fd93bda9fe3
- Size
  
  1000KB
- MD5
  
  5803ecc0e58ceaaf7fae8fd93bda9fe3
- SHA1
  
  573545a0ea1f8f1e295b52f2d2e640f91085f559
- SHA256
  
  f203662a913d5098e3992adb1149ec6d51e0630ad9068c7aada05c24cfde2c53
- SHA512
  
  f8362ccae6828eb668fde7e6c27c3da5c9aad0f380d867341096ff70e2e3c146f85aba7263c55e17bd4719bfd260ef8bc29025c41759c47a9e48298dd5bd5099
- SSDEEP
  
  24576:p70nUTYCj9g7RJAxiJHDUxyRf5i1B+5vMiqt0gj2ed:pInUcCj9gtJ1jUgRf5oqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2