27ac53b667c4636a445cc11f821a3553f6b9325c78258589c6ca71f57470fd58 | Triage

Resubmissions

29/02/2024, 06:37

240229-hdphdahb5s 6

29/02/2024, 06:06

240229-gt7hfsge6v 6

29/02/2024, 05:36

240229-gamnyagb56 6

Sharing

Copy URL Twitter E-mail

General

Target

Discord Nitro - TZ Cracking.exe
Size

752KB
Sample

240229-gamnyagb56
MD5

82e8e9f6d97c1a2fa5aa98bc1298e44b
SHA1

0da1ef478be12657c3ee1a95f9ad9db6fb5ccbd3
SHA256

27ac53b667c4636a445cc11f821a3553f6b9325c78258589c6ca71f57470fd58
SHA512

d88fefd55dbc6a95349e111169fa807195351a28d049cd5bd6203e85e92247d181a8647983932c9c4c4a861fd3f1ccfce7fc721cf4299d96b5d8bbcf21e6c8e4
SSDEEP

12288:nwAwwC/N3Xm1/eug6sfZFXr9KEvob1PrFGBGjxshS+Ud5xu4DNez:nwAwrN3Xm1/eug6s4b1PrgBGj5w

Score

6^/10

Malware Config

Targets

- Target
  
  Discord Nitro - TZ Cracking.exe
- Size
  
  752KB
- MD5
  
  82e8e9f6d97c1a2fa5aa98bc1298e44b
- SHA1
  
  0da1ef478be12657c3ee1a95f9ad9db6fb5ccbd3
- SHA256
  
  27ac53b667c4636a445cc11f821a3553f6b9325c78258589c6ca71f57470fd58
- SHA512
  
  d88fefd55dbc6a95349e111169fa807195351a28d049cd5bd6203e85e92247d181a8647983932c9c4c4a861fd3f1ccfce7fc721cf4299d96b5d8bbcf21e6c8e4
- SSDEEP
  
  12288:nwAwwC/N3Xm1/eug6sfZFXr9KEvob1PrFGBGjxshS+Ud5xu4DNez:nwAwrN3Xm1/eug6s4b1PrgBGj5w
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1