fdeaea6ee3b4664cd25bc74e2a77358c3cd7427024e58151725cc311c82ce034 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86379266b1b75dffccbe0cae3b03945e
Size

1000KB
Sample

240201-hk93naffbj
MD5

86379266b1b75dffccbe0cae3b03945e
SHA1

b6a3bde45c852f6fd693c973b60586540bb684f2
SHA256

fdeaea6ee3b4664cd25bc74e2a77358c3cd7427024e58151725cc311c82ce034
SHA512

8c91c0da8ea45b53f2861201cbd591bd53d82aaa8b2ee79762635ff0f38e850559a82611b15a0be37796a12d9734a4bb5c85ece03ab40ca2eb66a8f4b2b71e2f
SSDEEP

24576:VygMez+Vfcxnbfd+MvIzakmkA1B+5vMiqt0gj2ed:VcemfSnbVh7kJKqOL

Score

7^/10

Malware Config

Targets

- Target
  
  86379266b1b75dffccbe0cae3b03945e
- Size
  
  1000KB
- MD5
  
  86379266b1b75dffccbe0cae3b03945e
- SHA1
  
  b6a3bde45c852f6fd693c973b60586540bb684f2
- SHA256
  
  fdeaea6ee3b4664cd25bc74e2a77358c3cd7427024e58151725cc311c82ce034
- SHA512
  
  8c91c0da8ea45b53f2861201cbd591bd53d82aaa8b2ee79762635ff0f38e850559a82611b15a0be37796a12d9734a4bb5c85ece03ab40ca2eb66a8f4b2b71e2f
- SSDEEP
  
  24576:VygMez+Vfcxnbfd+MvIzakmkA1B+5vMiqt0gj2ed:VcemfSnbVh7kJKqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2