d1ed03e3bc52185fd7a11d699e9d29cfc7a54ed337908ab5e93e0bca4df30e49 | Triage

Sharing

General

Target

990e0c077b8099e15f5c4a55b2ffa33d
Size

1000KB
Sample

240213-lcb3faed51
MD5

990e0c077b8099e15f5c4a55b2ffa33d
SHA1

9d00725680af3e20c7e42296a0b458de2fde981d
SHA256

d1ed03e3bc52185fd7a11d699e9d29cfc7a54ed337908ab5e93e0bca4df30e49
SHA512

57ef9977381a6a3578a27b178908b3465566bfd5140d43473003c26c92bcbcbce6936c569c9d52347806ab662a1991f4a26803f6f0d4ab41205267b257ec9054
SSDEEP

24576:odw3DzaRxJFKNzvbGqDQUYe30j1B+5vMiqt0gj2ed:JnaPJFG+qEUL30LqOL

Score

7^/10

Malware Config

Targets

- Target
  
  990e0c077b8099e15f5c4a55b2ffa33d
- Size
  
  1000KB
- MD5
  
  990e0c077b8099e15f5c4a55b2ffa33d
- SHA1
  
  9d00725680af3e20c7e42296a0b458de2fde981d
- SHA256
  
  d1ed03e3bc52185fd7a11d699e9d29cfc7a54ed337908ab5e93e0bca4df30e49
- SHA512
  
  57ef9977381a6a3578a27b178908b3465566bfd5140d43473003c26c92bcbcbce6936c569c9d52347806ab662a1991f4a26803f6f0d4ab41205267b257ec9054
- SSDEEP
  
  24576:odw3DzaRxJFKNzvbGqDQUYe30j1B+5vMiqt0gj2ed:JnaPJFG+qEUL30LqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2