e7bfea95068ae18b9056771c4f348803259a07d0e4c4f3592803fa2810ec373c | Triage

Sharing

General

Target

764e238f5dc4e60e03148c6ce122d2f6
Size

1000KB
Sample

240126-eb24xaegal
MD5

764e238f5dc4e60e03148c6ce122d2f6
SHA1

dc392796b82ae74786e0c54922dc51a4f5392887
SHA256

e7bfea95068ae18b9056771c4f348803259a07d0e4c4f3592803fa2810ec373c
SHA512

227caaf5a03e57fd1642097f493d70a259e3f9303d776354a9fe04fe523375223eff2a0203829e9e20e1734af868cf778bf3a53a237fcd69604190b12ecec996
SSDEEP

24576:rS/T17m6rdVG2qlAgGKYOD3xDV1B+5vMiqt0gj2ed:oqWpqlAgGlODBDZqOL

Score

7^/10

Malware Config

Targets

- Target
  
  764e238f5dc4e60e03148c6ce122d2f6
- Size
  
  1000KB
- MD5
  
  764e238f5dc4e60e03148c6ce122d2f6
- SHA1
  
  dc392796b82ae74786e0c54922dc51a4f5392887
- SHA256
  
  e7bfea95068ae18b9056771c4f348803259a07d0e4c4f3592803fa2810ec373c
- SHA512
  
  227caaf5a03e57fd1642097f493d70a259e3f9303d776354a9fe04fe523375223eff2a0203829e9e20e1734af868cf778bf3a53a237fcd69604190b12ecec996
- SSDEEP
  
  24576:rS/T17m6rdVG2qlAgGKYOD3xDV1B+5vMiqt0gj2ed:oqWpqlAgGlODBDZqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2