dd909d698f344c5029a9d119550e091dfbc803457174ab06c7b3242c495711bc | Triage

Sharing

General

Target

90067334cb95dbfedebf32ca2c8607d8
Size

1000KB
Sample

240204-yq66yshfd8
MD5

90067334cb95dbfedebf32ca2c8607d8
SHA1

c1ccbd5ae43a06ca5550b39e2f4c11782568c4ec
SHA256

dd909d698f344c5029a9d119550e091dfbc803457174ab06c7b3242c495711bc
SHA512

8ed07b1c3bf9978eae26824aed094a9227800e506adeb803f6d2e95de7f929f4654c4a0e73726d54ad3cdc28c51246704296ef2592cdfb88cd5f688373648251
SSDEEP

24576:iew286NHx5ckQpeeXt8b1B+5vMiqt0gj2ed:9w5qjBQpf98zqOL

Score

7^/10

Malware Config

Targets

- Target
  
  90067334cb95dbfedebf32ca2c8607d8
- Size
  
  1000KB
- MD5
  
  90067334cb95dbfedebf32ca2c8607d8
- SHA1
  
  c1ccbd5ae43a06ca5550b39e2f4c11782568c4ec
- SHA256
  
  dd909d698f344c5029a9d119550e091dfbc803457174ab06c7b3242c495711bc
- SHA512
  
  8ed07b1c3bf9978eae26824aed094a9227800e506adeb803f6d2e95de7f929f4654c4a0e73726d54ad3cdc28c51246704296ef2592cdfb88cd5f688373648251
- SSDEEP
  
  24576:iew286NHx5ckQpeeXt8b1B+5vMiqt0gj2ed:9w5qjBQpf98zqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2