Overview

overview

7

Static

static

3

665cc70a1c...2e.exe

windows7-x64

7

665cc70a1c...2e.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    665cc70a1cdd278e683b75a59f72352e

  • Size

    506KB

  • Sample

    240118-3w9w9ahdgm

  • MD5

    665cc70a1cdd278e683b75a59f72352e

  • SHA1

    18dcb8116e2616eb9e4823a310ee7542863872a4

  • SHA256

    3f77535d886a0c741beecd61e251606b3b63c019f0306746a2c52f19382a1200

  • SHA512

    b2f093f7165d8899531ef46da161f5f06ebdff6fb72441fde20c43fee4361b1b99c84e52412ca83cf19d49e929b0aab02bc12cc5a03582bd1d371eed91041242

  • SSDEEP

    12288:0+/KjA5aljIAsGWp0tq47Umy9wkY/N9W22EEHkEx0h6VVXwsUl4htlVPi7drzcQC:0jQDOKSE/+P1BAq2Q96VBdqPq

Score
7/10

Malware Config

Targets

    • Target

      665cc70a1cdd278e683b75a59f72352e

    • Size

      506KB

    • MD5

      665cc70a1cdd278e683b75a59f72352e

    • SHA1

      18dcb8116e2616eb9e4823a310ee7542863872a4

    • SHA256

      3f77535d886a0c741beecd61e251606b3b63c019f0306746a2c52f19382a1200

    • SHA512

      b2f093f7165d8899531ef46da161f5f06ebdff6fb72441fde20c43fee4361b1b99c84e52412ca83cf19d49e929b0aab02bc12cc5a03582bd1d371eed91041242

    • SSDEEP

      12288:0+/KjA5aljIAsGWp0tq47Umy9wkY/N9W22EEHkEx0h6VVXwsUl4htlVPi7drzcQC:0jQDOKSE/+P1BAq2Q96VBdqPq

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks