db4f204954807cbaa0686ae84d600df3897c651a1fe6d14f412be9ba5a9ed4bf | Triage

Sharing

General

Target

c23ecd4f33994a89e6f07afae611c7d8
Size

242KB
Sample

240312-c49y4sfg49
MD5

c23ecd4f33994a89e6f07afae611c7d8
SHA1

7d4fe416b14a6799b176e2281b88a8285bd421a2
SHA256

db4f204954807cbaa0686ae84d600df3897c651a1fe6d14f412be9ba5a9ed4bf
SHA512

7a27587bc58812464d7bdeb88bf86ac598c72c59096419972cc7196cf613ad551e60b9754afe55feec0f8888e073f968a0ed9ff972b74dbd7da40c2ba9e2eac8
SSDEEP

6144:0Ys6zlNR7lbXG9jsJWTx9llh4R6qh35rPgQZ:0YsyblyjsoTxvw6qhprPge

Score

7^/10

Malware Config

Targets

- Target
  
  c23ecd4f33994a89e6f07afae611c7d8
- Size
  
  242KB
- MD5
  
  c23ecd4f33994a89e6f07afae611c7d8
- SHA1
  
  7d4fe416b14a6799b176e2281b88a8285bd421a2
- SHA256
  
  db4f204954807cbaa0686ae84d600df3897c651a1fe6d14f412be9ba5a9ed4bf
- SHA512
  
  7a27587bc58812464d7bdeb88bf86ac598c72c59096419972cc7196cf613ad551e60b9754afe55feec0f8888e073f968a0ed9ff972b74dbd7da40c2ba9e2eac8
- SSDEEP
  
  6144:0Ys6zlNR7lbXG9jsJWTx9llh4R6qh35rPgQZ:0YsyblyjsoTxvw6qhprPge
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2