General

  • Target

    bad349dd6ea220ee81e775e75a99c798

  • Size

    1000KB

  • Sample

    240308-hxpmgsba3z

  • MD5

    bad349dd6ea220ee81e775e75a99c798

  • SHA1

    f7ea4ff6e4b709ba7a6248e5e000401cc1284342

  • SHA256

    fd5f3a54aef4c0784799873f7906ea5d1b1cb2555803f6f7f5fdb64ffd904adf

  • SHA512

    a85c769957e20f4d56965712cf145079e67c979c9b6984d0388e88e2ef782b121030b9663b97f631908ea74d16b44a3d652f4b390122274e3a8830e5b8e29cd3

  • SSDEEP

    24576:mel+qEQCssFl6QoxkiXV1B+5vMiqt0gj2ed:r+HQrsv6QOkiXZqOL

Score
7/10

Malware Config

Targets

    • Target

      bad349dd6ea220ee81e775e75a99c798

    • Size

      1000KB

    • MD5

      bad349dd6ea220ee81e775e75a99c798

    • SHA1

      f7ea4ff6e4b709ba7a6248e5e000401cc1284342

    • SHA256

      fd5f3a54aef4c0784799873f7906ea5d1b1cb2555803f6f7f5fdb64ffd904adf

    • SHA512

      a85c769957e20f4d56965712cf145079e67c979c9b6984d0388e88e2ef782b121030b9663b97f631908ea74d16b44a3d652f4b390122274e3a8830e5b8e29cd3

    • SSDEEP

      24576:mel+qEQCssFl6QoxkiXV1B+5vMiqt0gj2ed:r+HQrsv6QOkiXZqOL

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks