36ea9c07252aa739c8a8366453f629a5762afc152b32fa358c893ca0233791a6 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

651d91d3eb...4d.exe

windows7-x64

7

651d91d3eb...4d.exe

windows10-2004-x64

7

Sharing

General

Target

651d91d3ebde3977b10ebadfe0269d4d
Size

9.2MB
Sample

240118-l4qpxahhb3
MD5

651d91d3ebde3977b10ebadfe0269d4d
SHA1

2b8cf23d30ad284da26bad86ffaa9ed2b246b512
SHA256

36ea9c07252aa739c8a8366453f629a5762afc152b32fa358c893ca0233791a6
SHA512

3930c42654d9a9e84b8aa6a500b425beb98df2282415f2654556bdee36ec8821bd7df428d9522c8a695ca9dc2f9a8fd6dd579e05c8f5c21d583b0c4c4276adf6
SSDEEP

196608:R01dh08Tgk7c/ihukxA3f97Y1zO2sPnGMfhReCWJo8i1zwh/:R2dDTfc/YXq3fxY1ranGMbso/NwV

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

651d91d3ebde3977b10ebadfe0269d4d.exe

Resource

win7-20231129-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

651d91d3ebde3977b10ebadfe0269d4d.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  651d91d3ebde3977b10ebadfe0269d4d
- Size
  
  9.2MB
- MD5
  
  651d91d3ebde3977b10ebadfe0269d4d
- SHA1
  
  2b8cf23d30ad284da26bad86ffaa9ed2b246b512
- SHA256
  
  36ea9c07252aa739c8a8366453f629a5762afc152b32fa358c893ca0233791a6
- SHA512
  
  3930c42654d9a9e84b8aa6a500b425beb98df2282415f2654556bdee36ec8821bd7df428d9522c8a695ca9dc2f9a8fd6dd579e05c8f5c21d583b0c4c4276adf6
- SSDEEP
  
  196608:R01dh08Tgk7c/ihukxA3f97Y1zO2sPnGMfhReCWJo8i1zwh/:R2dDTfc/YXq3fxY1ranGMbso/NwV
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy