Overview

overview

7

Static

static

3

b9fc74097f...ac.exe

windows7-x64

7

b9fc74097f...ac.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b9fc74097feace2212582bbef23699ac

  • Size

    1000KB

  • Sample

    240307-3x9ymsaf6t

  • MD5

    b9fc74097feace2212582bbef23699ac

  • SHA1

    f33cac79aa58bd806b0c04c58214b966df0d271d

  • SHA256

    6c533b5ee78c2bb240a08d3238e410bcccaf54e01c8f9553e8919ff5354f4230

  • SHA512

    9c0eaee4587a9a659930ed9bb267db20f7fae2ba31db55c0b4653037196061b4ff4a946694a121a3512577737d232846f76dd9fae15ec85715a2a3192dd161c4

  • SSDEEP

    24576:a77tAE/+rxFj1l2XmA/51B+5vMiqt0gj2ed:NEWrxFP4lqOL

Score
7/10

Malware Config

Targets

    • Target

      b9fc74097feace2212582bbef23699ac

    • Size

      1000KB

    • MD5

      b9fc74097feace2212582bbef23699ac

    • SHA1

      f33cac79aa58bd806b0c04c58214b966df0d271d

    • SHA256

      6c533b5ee78c2bb240a08d3238e410bcccaf54e01c8f9553e8919ff5354f4230

    • SHA512

      9c0eaee4587a9a659930ed9bb267db20f7fae2ba31db55c0b4653037196061b4ff4a946694a121a3512577737d232846f76dd9fae15ec85715a2a3192dd161c4

    • SSDEEP

      24576:a77tAE/+rxFj1l2XmA/51B+5vMiqt0gj2ed:NEWrxFP4lqOL

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks