5dc85f83ebede67ef18cc8e64ad0b937335e6b96955845a9d579cba72efcdfe4 | Triage

Sharing

General

Target

ba263bc690e00534c0884bd77d8271af
Size

1000KB
Sample

240308-bmz7xabc45
MD5

ba263bc690e00534c0884bd77d8271af
SHA1

239d8750c8b2c393c475b0cfb2ce99de90becb25
SHA256

5dc85f83ebede67ef18cc8e64ad0b937335e6b96955845a9d579cba72efcdfe4
SHA512

e6d7517837eab9450ffbddafa4a78fd3b225c0e3ddd4131b6cc088231a38e39d3869bceb3486bdb18676161dd4eb8f333b748f8e94d1fefd11cdeb662d0d42d8
SSDEEP

24576:ijCDldvChVFcmCpHBvV/1B+5vMiqt0gj2ed:ijCDldyVFNuHBvVfqOL

Score

7^/10

Malware Config

Targets

- Target
  
  ba263bc690e00534c0884bd77d8271af
- Size
  
  1000KB
- MD5
  
  ba263bc690e00534c0884bd77d8271af
- SHA1
  
  239d8750c8b2c393c475b0cfb2ce99de90becb25
- SHA256
  
  5dc85f83ebede67ef18cc8e64ad0b937335e6b96955845a9d579cba72efcdfe4
- SHA512
  
  e6d7517837eab9450ffbddafa4a78fd3b225c0e3ddd4131b6cc088231a38e39d3869bceb3486bdb18676161dd4eb8f333b748f8e94d1fefd11cdeb662d0d42d8
- SSDEEP
  
  24576:ijCDldvChVFcmCpHBvV/1B+5vMiqt0gj2ed:ijCDldyVFNuHBvVfqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2