34dcc97dbdc3bec1ff7e4b0405b6b34c23ebce48d769e363577632c9b98f394d | Triage

Sharing

General

Target

beff46b1dd6ef3d294c4d64a11c94306
Size

1000KB
Sample

240310-s9naasff45
MD5

beff46b1dd6ef3d294c4d64a11c94306
SHA1

6cad753658b716c9847af44cc18cfc98ff03d944
SHA256

34dcc97dbdc3bec1ff7e4b0405b6b34c23ebce48d769e363577632c9b98f394d
SHA512

31d5e4cba0ffa4341f8b0b547aefbc3cff72a8c08ca0cbf6a2821c1f4c0c4b8eb24d97a1df140fc4e2fa5a9d2f3967b75f9ccd64c6f1090f8354d8f66afd810a
SSDEEP

24576:Df0G9psLIcLHhHwjQy1B+5vMiqt0gj2ed:jaHwjQYqOL

Score

7^/10

Malware Config

Targets

- Target
  
  beff46b1dd6ef3d294c4d64a11c94306
- Size
  
  1000KB
- MD5
  
  beff46b1dd6ef3d294c4d64a11c94306
- SHA1
  
  6cad753658b716c9847af44cc18cfc98ff03d944
- SHA256
  
  34dcc97dbdc3bec1ff7e4b0405b6b34c23ebce48d769e363577632c9b98f394d
- SHA512
  
  31d5e4cba0ffa4341f8b0b547aefbc3cff72a8c08ca0cbf6a2821c1f4c0c4b8eb24d97a1df140fc4e2fa5a9d2f3967b75f9ccd64c6f1090f8354d8f66afd810a
- SSDEEP
  
  24576:Df0G9psLIcLHhHwjQy1B+5vMiqt0gj2ed:jaHwjQYqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2