0aed529052dc529174b6be11934e907632d33433ef0d99543750076d3bddbbb3 | Triage

Sharing

General

Target

5c35f04ee50df508e0520a9d32155979
Size

242KB
Sample

240115-frda6ahhfj
MD5

5c35f04ee50df508e0520a9d32155979
SHA1

f046131ef8c1ca508decfb30bc9943880c64fb69
SHA256

0aed529052dc529174b6be11934e907632d33433ef0d99543750076d3bddbbb3
SHA512

5f825b7092a067524d86806b9778e3798a2b0b1f5f4c572f052b397861f8b0bd2f95d81a2a986823a60f8060e251723049d6caa0d1c438ab2d8bc21703ae4395
SSDEEP

6144:XdOq7bLk+i0Z9J0QGFYq36h38N7sheNgssFXN+kb7B:8y9i0ZUDFKeNgDBb7B

Score

7^/10

Malware Config

Targets

- Target
  
  5c35f04ee50df508e0520a9d32155979
- Size
  
  242KB
- MD5
  
  5c35f04ee50df508e0520a9d32155979
- SHA1
  
  f046131ef8c1ca508decfb30bc9943880c64fb69
- SHA256
  
  0aed529052dc529174b6be11934e907632d33433ef0d99543750076d3bddbbb3
- SHA512
  
  5f825b7092a067524d86806b9778e3798a2b0b1f5f4c572f052b397861f8b0bd2f95d81a2a986823a60f8060e251723049d6caa0d1c438ab2d8bc21703ae4395
- SSDEEP
  
  6144:XdOq7bLk+i0Z9J0QGFYq36h38N7sheNgssFXN+kb7B:8y9i0ZUDFKeNgDBb7B
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2