1bda355d81c7edd24fbc872fd52e1529d607137d8d299bf12045c64a649f417f | Triage

Sharing

General

Target

Put key here.exe
Size

10.8MB
Sample

240118-z7mz3shdhp
MD5

6b9b142126b245ca6dae8282e4ddfa95
SHA1

0a398ec44e2754e58bbcc9d262d40b081dfb3441
SHA256

1bda355d81c7edd24fbc872fd52e1529d607137d8d299bf12045c64a649f417f
SHA512

7341b84f7b9c74f087efb664dac0eed560321e5439cf1a74465785e0b08825db01a9746f2df352aad96206ddd49d2bd69f3f6b97eba454f50489157ba682db6d
SSDEEP

196608:gNqV0j0rWwghB0PJaGe3cguDduEL97iAfJYwpi0U4wXTfuqT3dG33EdOy:yqOhB6aT+umNZCmUhfuqT3du3n

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  Put key here.exe
- Size
  
  10.8MB
- MD5
  
  6b9b142126b245ca6dae8282e4ddfa95
- SHA1
  
  0a398ec44e2754e58bbcc9d262d40b081dfb3441
- SHA256
  
  1bda355d81c7edd24fbc872fd52e1529d607137d8d299bf12045c64a649f417f
- SHA512
  
  7341b84f7b9c74f087efb664dac0eed560321e5439cf1a74465785e0b08825db01a9746f2df352aad96206ddd49d2bd69f3f6b97eba454f50489157ba682db6d
- SSDEEP
  
  196608:gNqV0j0rWwghB0PJaGe3cguDduEL97iAfJYwpi0U4wXTfuqT3dG33EdOy:yqOhB6aT+umNZCmUhfuqT3du3n
Score

8^/10

evasion
- Stops running service(s)
  evasion
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

behavioral2