ccd377a93013dc25d7a1fcc6c51977de4c8a5fea99c621b27c10bc46a983dc8c | Triage

Sharing

General

Target

c473e839cf4f47e919380f68249a3379
Size

1000KB
Sample

240313-advqdsgg76
MD5

c473e839cf4f47e919380f68249a3379
SHA1

5f184d2f916552906030cc03c351baa2b7f3a42d
SHA256

ccd377a93013dc25d7a1fcc6c51977de4c8a5fea99c621b27c10bc46a983dc8c
SHA512

2f3cc2c071e16557b70c919f9c9eb773a300e35e81e33c7c5f5cf5bb943340c167ee1754af4f60f402f8e43c3b17875e422492f1cd263c16abcc091dd0e1b662
SSDEEP

24576:t+aV0E3JdG0hQut+F4pTdZQ1Sa9eSvyRvZOavX9sEYn5+X+r0XkMJ+Itq1B+5vM3:BdGqpdnXDkNqOL

Score

7^/10

Malware Config

Targets

- Target
  
  c473e839cf4f47e919380f68249a3379
- Size
  
  1000KB
- MD5
  
  c473e839cf4f47e919380f68249a3379
- SHA1
  
  5f184d2f916552906030cc03c351baa2b7f3a42d
- SHA256
  
  ccd377a93013dc25d7a1fcc6c51977de4c8a5fea99c621b27c10bc46a983dc8c
- SHA512
  
  2f3cc2c071e16557b70c919f9c9eb773a300e35e81e33c7c5f5cf5bb943340c167ee1754af4f60f402f8e43c3b17875e422492f1cd263c16abcc091dd0e1b662
- SSDEEP
  
  24576:t+aV0E3JdG0hQut+F4pTdZQ1Sa9eSvyRvZOavX9sEYn5+X+r0XkMJ+Itq1B+5vM3:BdGqpdnXDkNqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2