1b94b84f0a77b96f95dbe92442b55f3437c9b6edf0e45f670e9538380a768674 | Triage

Sharing

General

Target

8be6cdd47fb220c27fff479d571e83a7
Size

1000KB
Sample

240203-kpgb9afgfj
MD5

8be6cdd47fb220c27fff479d571e83a7
SHA1

74828255d573295d18da10ca6c886db4ae7a8856
SHA256

1b94b84f0a77b96f95dbe92442b55f3437c9b6edf0e45f670e9538380a768674
SHA512

81abfb7e93a3d8d35abfa654e2524ffc7c84a055dfac81de2a8c63e27027cfc719779e49849a788c05c009611c9e7adbcb08a8b51bd21dd032d1e08fa2fbe7d5
SSDEEP

24576:bn886sZXGwzVWGbZnwaHH1B+5vMiqt0gj2ed:r886sDbZXH3qOL

Score

7^/10

Malware Config

Targets

- Target
  
  8be6cdd47fb220c27fff479d571e83a7
- Size
  
  1000KB
- MD5
  
  8be6cdd47fb220c27fff479d571e83a7
- SHA1
  
  74828255d573295d18da10ca6c886db4ae7a8856
- SHA256
  
  1b94b84f0a77b96f95dbe92442b55f3437c9b6edf0e45f670e9538380a768674
- SHA512
  
  81abfb7e93a3d8d35abfa654e2524ffc7c84a055dfac81de2a8c63e27027cfc719779e49849a788c05c009611c9e7adbcb08a8b51bd21dd032d1e08fa2fbe7d5
- SSDEEP
  
  24576:bn886sZXGwzVWGbZnwaHH1B+5vMiqt0gj2ed:r886sDbZXH3qOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2