a1070d49f415120cba5c94b4a8c8fb793fdd2eaca26b231632f00e76d7e97bfa | Triage

Resubmissions

20-02-2024 05:30

240220-f7gzaace52 5

20-02-2024 05:27

240220-f5efdace32 5

Sharing

General

Target

Boost_Tool_Rebrand_Adarsh.rar
Size

12.1MB
Sample

240220-f7gzaace52
MD5

b9336419aea6197bd5186c02b7837b13
SHA1

c93154945cd91727c779cf7df6df5aa760b29c74
SHA256

a1070d49f415120cba5c94b4a8c8fb793fdd2eaca26b231632f00e76d7e97bfa
SHA512

989e5a36254506fc3588666c6396a629c2ef70eafde13754d9011bf647874a4f3b1a8a0e69a3acc16c9a34133cae2aa86918b2cbb1a3deac9a20212fd46cd42f
SSDEEP

196608:vvzV9A/E1BwMKXIf2mPnpCfqQHwRXKkwvZLI1Xqn+cdw/oOQZdet2kAYI/wo/rB:nTa4mndfUXnwvZCqtdSoJZAdADw6N

Score

5^/10

Malware Config

Targets

- Target
  
  Boost Tool Rebrand Adarsh/BoostTool.exe
- Size
  
  12.6MB
- MD5
  
  7bcb84b8808b9742d7e3b38bcde49ab5
- SHA1
  
  f8f3f50925992fbb28cc0765abaa53d6d950e85f
- SHA256
  
  f1b0258017bc7bc677ba2504ea3d3b32c6639edff4aa6d4de32404cf182d34fa
- SHA512
  
  69e00063fc887b19a4c4b5082027801534a20d6d763f35d0525e87771d9e32bea5675ea2a2a6f8ba239ab21ebcfdccf5b76a977a63fff924844d6e2e4667e83a
- SSDEEP
  
  393216:S5n8mnpVfU3mARSgAdFN2yjcIVi7etDxfZyMk:S58mnjM3mDgAdFoyY/StD7yM
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1