d7319259988ae95589e11c7eec784ec654fe7ead27362cf758d62cdf527abbd1 | Triage

Sharing

General

Target

cc4b226a7610fc14b03237f0dee45cf5
Size

1000KB
Sample

240315-ypr1mshh4x
MD5

cc4b226a7610fc14b03237f0dee45cf5
SHA1

05adfdff2a7020c11cb5f3fe8d4baa6b06066d51
SHA256

d7319259988ae95589e11c7eec784ec654fe7ead27362cf758d62cdf527abbd1
SHA512

6e7e2744065daa702a18f16f57f555a215b873a665c299bdb8a3ca17a852474717e36dd5c13e33376edd0cab95bcd6a59e205b58563057acb3fbbb46b0ef793f
SSDEEP

24576:KV7OKyavREmxx61Kc0T1B+5vMiqt0gj2ed:o7ORhl0bqOL

Score

7^/10

Malware Config

Targets

- Target
  
  cc4b226a7610fc14b03237f0dee45cf5
- Size
  
  1000KB
- MD5
  
  cc4b226a7610fc14b03237f0dee45cf5
- SHA1
  
  05adfdff2a7020c11cb5f3fe8d4baa6b06066d51
- SHA256
  
  d7319259988ae95589e11c7eec784ec654fe7ead27362cf758d62cdf527abbd1
- SHA512
  
  6e7e2744065daa702a18f16f57f555a215b873a665c299bdb8a3ca17a852474717e36dd5c13e33376edd0cab95bcd6a59e205b58563057acb3fbbb46b0ef793f
- SSDEEP
  
  24576:KV7OKyavREmxx61Kc0T1B+5vMiqt0gj2ed:o7ORhl0bqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2