42be0b5f67b95907c73a703b3d9611cd64e4dd20b9e33dbaae7f67cc08eeca43 | Triage

Sharing

General

Target

c27666876d961978189367faaa25773f
Size

1.9MB
Sample

240312-e8fl6sad95
MD5

c27666876d961978189367faaa25773f
SHA1

dda489af59b676be16b803b8a38819233f31c5c4
SHA256

42be0b5f67b95907c73a703b3d9611cd64e4dd20b9e33dbaae7f67cc08eeca43
SHA512

561fce32517d42e166cf388420b2443f5b0a924130d43c0cd7e30335f2faf832d232b082c63c88bf81c64dce9ada5dab6fb53ef350dfcca6dc62084014c0dea3
SSDEEP

49152:TNEA7Kzx8/I3LQgZYqTjkIzsjJHi+sZqISmfqnzcRG5+th/:T7ezSsLBZYqfvgsZqmf+6GM/

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  SleepD+15TR-LNG.exe
- Size
  
  2.0MB
- MD5
  
  4d14a2fe48024d190ae7a4f3e7ca8939
- SHA1
  
  ae7dc7149f7b44a39308a3a6f227db10d86febe1
- SHA256
  
  9d1c4d7c14a1d17ef05445e1ba10a3d1563f930bb18d3ddbd2808402b9280a9c
- SHA512
  
  a209c2a36210100af41618945d74ac95aeca6bb5a5c2d02f3648d1ad387de7d7502a1c795d999507d9c01a4a155ffb7f6d4fcc057787ca99bf4f101a3e9e9689
- SSDEEP
  
  49152:kxh5uapDu6220nlC/+7ANNdN70wMySkV:oPpDu622G2NP7ay
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2