d7f56aec9688fe21ff3a7daaf03f36f191da44a1a423116d46784c8acec678d6 | Triage

Sharing

General

Target

869cf93abd01f6981cf2d473582f94dd
Size

506KB
Sample

240201-l4gf8scddp
MD5

869cf93abd01f6981cf2d473582f94dd
SHA1

860bfbf8012f8b76820f0c959ccf7061974243fc
SHA256

d7f56aec9688fe21ff3a7daaf03f36f191da44a1a423116d46784c8acec678d6
SHA512

204535682211eec81d34e1a93690aa6001548b9e115753be10adcefc2592b14987537f6364afb4385c3aaaad773adf3aa965d65e95bed1dfb5171a6af0a6b7ed
SSDEEP

12288:maBXFdf810VjbbqI8vo/RQB/Kbx4lYKdGsO58n8s5rF1:9BrfKs3qnvo/RE/2x4hG7Sn8Qh1

Score

7^/10

Malware Config

Targets

- Target
  
  869cf93abd01f6981cf2d473582f94dd
- Size
  
  506KB
- MD5
  
  869cf93abd01f6981cf2d473582f94dd
- SHA1
  
  860bfbf8012f8b76820f0c959ccf7061974243fc
- SHA256
  
  d7f56aec9688fe21ff3a7daaf03f36f191da44a1a423116d46784c8acec678d6
- SHA512
  
  204535682211eec81d34e1a93690aa6001548b9e115753be10adcefc2592b14987537f6364afb4385c3aaaad773adf3aa965d65e95bed1dfb5171a6af0a6b7ed
- SSDEEP
  
  12288:maBXFdf810VjbbqI8vo/RQB/Kbx4lYKdGsO58n8s5rF1:9BrfKs3qnvo/RE/2x4hG7Sn8Qh1
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2