General

  • Target

    1708648250.exe

  • Size

    7.5MB

  • Sample

    240228-2v3wwafg7s

  • MD5

    e4997c45202e4db87d010d551bca7708

  • SHA1

    98afff2da234284e4cde5806f43031ca9285a329

  • SHA256

    d2e0913e16c5c0c39901c16e1090d97afb7cf6a973ee130fab1f758703c91f3b

  • SHA512

    c6801fbc57e7152d4e606adaf036b7da5e78b744d39595515a3fff233a752aaa972c53f8242e6e61fac328f1e7984f947d151bedf8548abf10ce4ec727688754

  • SSDEEP

    98304:CWumlH6XBJOvJQODguF3DnRHVZK7PjfzFTG1QdpWR9YYTJymVKy+MQGZIi7ipeig:CN+oGZDRFjPZeTlGlyJFQecRM7HNhG

Score
7/10

Malware Config

Targets

    • Target

      1708648250.exe

    • Size

      7.5MB

    • MD5

      e4997c45202e4db87d010d551bca7708

    • SHA1

      98afff2da234284e4cde5806f43031ca9285a329

    • SHA256

      d2e0913e16c5c0c39901c16e1090d97afb7cf6a973ee130fab1f758703c91f3b

    • SHA512

      c6801fbc57e7152d4e606adaf036b7da5e78b744d39595515a3fff233a752aaa972c53f8242e6e61fac328f1e7984f947d151bedf8548abf10ce4ec727688754

    • SSDEEP

      98304:CWumlH6XBJOvJQODguF3DnRHVZK7PjfzFTG1QdpWR9YYTJymVKy+MQGZIi7ipeig:CN+oGZDRFjPZeTlGlyJFQecRM7HNhG

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks