645a73b5eb1d312a464ff332b0c38e50ae34af0512c446a58bff17c0dd213844 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d73a383b45c343061ac312f4c99ef55d
Size

1000KB
Sample

240319-13zczshf8v
MD5

d73a383b45c343061ac312f4c99ef55d
SHA1

6e9d5463276217966b030b6a3a60db6bce5912d4
SHA256

645a73b5eb1d312a464ff332b0c38e50ae34af0512c446a58bff17c0dd213844
SHA512

a921888fd24497e04ee23f199235652c7987e9b110ab6a1e7e8ece8188dc8b6e5657989c0af56f72d89d16c44420dee5f3585f2fbfcedcdbd32928180dde2087
SSDEEP

24576:7rtXgr+c6imn39dVgEvBnGqQ1B+5vMiqt0gj2ed:7RXRc6ie39dVvJr6qOL

Score

7^/10

Malware Config

Targets

- Target
  
  d73a383b45c343061ac312f4c99ef55d
- Size
  
  1000KB
- MD5
  
  d73a383b45c343061ac312f4c99ef55d
- SHA1
  
  6e9d5463276217966b030b6a3a60db6bce5912d4
- SHA256
  
  645a73b5eb1d312a464ff332b0c38e50ae34af0512c446a58bff17c0dd213844
- SHA512
  
  a921888fd24497e04ee23f199235652c7987e9b110ab6a1e7e8ece8188dc8b6e5657989c0af56f72d89d16c44420dee5f3585f2fbfcedcdbd32928180dde2087
- SSDEEP
  
  24576:7rtXgr+c6imn39dVgEvBnGqQ1B+5vMiqt0gj2ed:7RXRc6ie39dVvJr6qOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2