General

  • Target

    e112bc3d244d7e8b725758285da8469c

  • Size

    1000KB

  • Sample

    240327-hxq6baab3x

  • MD5

    e112bc3d244d7e8b725758285da8469c

  • SHA1

    409eef1ad061b55ae68f76369820d67f39de1e48

  • SHA256

    57def8d3882219c9989ecb7c4ba8b692d1beeb7eae965f1810722368bc69c893

  • SHA512

    050206a506a638763d02fbb7014e0a38d3467ebdf96f88abdd61b2480a6d1d9cc7d914832bbb849e50acc67f861cc7b796054766ba0bba2d35fdc6ce2e8cfd19

  • SSDEEP

    24576:Pf4dU3RJfqYRAhovIeIEd0n9w1B+5vMiqt0gj2ed:YWRJf/YUIeIEd0gqOL

Score
7/10

Malware Config

Targets

    • Target

      e112bc3d244d7e8b725758285da8469c

    • Size

      1000KB

    • MD5

      e112bc3d244d7e8b725758285da8469c

    • SHA1

      409eef1ad061b55ae68f76369820d67f39de1e48

    • SHA256

      57def8d3882219c9989ecb7c4ba8b692d1beeb7eae965f1810722368bc69c893

    • SHA512

      050206a506a638763d02fbb7014e0a38d3467ebdf96f88abdd61b2480a6d1d9cc7d914832bbb849e50acc67f861cc7b796054766ba0bba2d35fdc6ce2e8cfd19

    • SSDEEP

      24576:Pf4dU3RJfqYRAhovIeIEd0n9w1B+5vMiqt0gj2ed:YWRJf/YUIeIEd0gqOL

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks