5555268e60fb7ba134a0c4b7214189d00f35f69b8bc751f7bf36f805523f0189 | Triage

Resubmissions

13/03/2024, 23:31

240313-3hsqtaeg55 5

Sharing

General

Target

IpVanish.vxm_1.exe
Size

1.7MB
Sample

240313-3hsqtaeg55
MD5

0a4a1335a6fc79ca96850bf7bc90d1e2
SHA1

def30e154fd47c753da39ccf214c39729ae60b1b
SHA256

5555268e60fb7ba134a0c4b7214189d00f35f69b8bc751f7bf36f805523f0189
SHA512

fb744ec44563f40ff038f57b7042e5c283ecf9805e543a8f3f0e306459b9833780e6f875ac76ed13e4946f4eefb7de8d9e54884375caccdf27f2778c0919c391
SSDEEP

24576:/9x1G58cb3/9XM1zaQmpWvFewNk0VL0LKJf4EVfu39xcgSWTpnDg07X1+ryItrcJ:1x/GIztcKCEJut6vWNDgS8/615jEu

Score

5^/10

Malware Config

Targets

- Target
  
  IpVanish.vxm_1.exe
- Size
  
  1.7MB
- MD5
  
  0a4a1335a6fc79ca96850bf7bc90d1e2
- SHA1
  
  def30e154fd47c753da39ccf214c39729ae60b1b
- SHA256
  
  5555268e60fb7ba134a0c4b7214189d00f35f69b8bc751f7bf36f805523f0189
- SHA512
  
  fb744ec44563f40ff038f57b7042e5c283ecf9805e543a8f3f0e306459b9833780e6f875ac76ed13e4946f4eefb7de8d9e54884375caccdf27f2778c0919c391
- SSDEEP
  
  24576:/9x1G58cb3/9XM1zaQmpWvFewNk0VL0LKJf4EVfu39xcgSWTpnDg07X1+ryItrcJ:1x/GIztcKCEJut6vWNDgS8/615jEu
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2