General

  • Target

    0x00080000000231ee-6.exe

  • Size

    8.5MB

  • Sample

    240302-vjhcgafb8t

  • MD5

    c97018b83acc1099cdd171647a50ec1f

  • SHA1

    1acdb17298ee25d9042c79346cc53f72767e6607

  • SHA256

    e49aec48358a65ac8d93539528d239cf5b9346e83efe7e67a8fa434283fa2d25

  • SHA512

    02c64c328a2fff1292c82ce270fcd173af85edf6db699b0d6a757c0ac233966d521f37d819c2a0a5f4ceeb44b9035914012548c28066fcfcdfd2a3942449f07b

  • SSDEEP

    196608:S/bETeQIhTyunsvebUhnuFQB2B2QwdufGWMdq:GQ+hTyukebmXC2Qw8+q

Score
8/10

Malware Config

Targets

    • Target

      0x00080000000231ee-6.exe

    • Size

      8.5MB

    • MD5

      c97018b83acc1099cdd171647a50ec1f

    • SHA1

      1acdb17298ee25d9042c79346cc53f72767e6607

    • SHA256

      e49aec48358a65ac8d93539528d239cf5b9346e83efe7e67a8fa434283fa2d25

    • SHA512

      02c64c328a2fff1292c82ce270fcd173af85edf6db699b0d6a757c0ac233966d521f37d819c2a0a5f4ceeb44b9035914012548c28066fcfcdfd2a3942449f07b

    • SSDEEP

      196608:S/bETeQIhTyunsvebUhnuFQB2B2QwdufGWMdq:GQ+hTyukebmXC2Qw8+q

    Score
    8/10
    • Creates new service(s)

    • Drops file in Drivers directory

    • Stops running service(s)

    • Executes dropped EXE

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks