fcc458dfac4b5b6c2ba85d7dd6cf311ad49e9f9795933f213b8bc2370662b29b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1eb6f33ec9eaff85edb79015e75f5fa.bin
Size

1000KB
Sample

240319-dqyjlaga67
MD5

d1eb6f33ec9eaff85edb79015e75f5fa
SHA1

075d6b243ed9a698fcaa68944af6141e5c9b3b10
SHA256

fcc458dfac4b5b6c2ba85d7dd6cf311ad49e9f9795933f213b8bc2370662b29b
SHA512

836122e57875278211ea64dee4aca2b9472689cfb90fdbfcbcbd27a13a85e248fb3a36c645858cad98662c7ffb157adf40670bf9de20277448addd7eb473b511
SSDEEP

24576:VfxngE6B1XuI2jlMVyX8tv1B+5vMiqt0gj2ed:VfxQ1XuhlMEsVqOL

Score

7^/10

Malware Config

Targets

- Target
  
  d1eb6f33ec9eaff85edb79015e75f5fa.bin
- Size
  
  1000KB
- MD5
  
  d1eb6f33ec9eaff85edb79015e75f5fa
- SHA1
  
  075d6b243ed9a698fcaa68944af6141e5c9b3b10
- SHA256
  
  fcc458dfac4b5b6c2ba85d7dd6cf311ad49e9f9795933f213b8bc2370662b29b
- SHA512
  
  836122e57875278211ea64dee4aca2b9472689cfb90fdbfcbcbd27a13a85e248fb3a36c645858cad98662c7ffb157adf40670bf9de20277448addd7eb473b511
- SSDEEP
  
  24576:VfxngE6B1XuI2jlMVyX8tv1B+5vMiqt0gj2ed:VfxQ1XuhlMEsVqOL
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2