64c6ef975705ab4ed4d6b8cbca57ffbbb58d42ac452a58c30a5f91db5dcf68e3 | Triage

Resubmissions

27/03/2024, 18:25

240327-w2zj5shg44 7

27/03/2024, 15:31

240327-syffbafb27 7

Sharing

Copy URL Twitter E-mail

General

Target

BQS_cs2.exe
Size

100.6MB
Sample

240327-w2zj5shg44
MD5

7492c2bc59a77e363128d57089061606
SHA1

593b160ad0932291e4b5437535fd236418399b1d
SHA256

64c6ef975705ab4ed4d6b8cbca57ffbbb58d42ac452a58c30a5f91db5dcf68e3
SHA512

7f25c781a9a73c64cd3ed17d8fe743611c7e9c90b7fde8dee382db8759d373c97a3ab37fd6477991c7d1a75fbec88982e94a4bbdefd0f84f06fb64b0ba020c8f
SSDEEP

3145728:igYRPSC++6y9JkUbt/VG6RmtCRlGPreJ2qHO5iV/SMcW+:ixaC4y9Oe5mERluqPHCiZ1c3

Score

7^/10

pyinstaller

Malware Config

Targets

- Target
  
  BQS_cs2.exe
- Size
  
  100.6MB
- MD5
  
  7492c2bc59a77e363128d57089061606
- SHA1
  
  593b160ad0932291e4b5437535fd236418399b1d
- SHA256
  
  64c6ef975705ab4ed4d6b8cbca57ffbbb58d42ac452a58c30a5f91db5dcf68e3
- SHA512
  
  7f25c781a9a73c64cd3ed17d8fe743611c7e9c90b7fde8dee382db8759d373c97a3ab37fd6477991c7d1a75fbec88982e94a4bbdefd0f84f06fb64b0ba020c8f
- SSDEEP
  
  3145728:igYRPSC++6y9JkUbt/VG6RmtCRlGPreJ2qHO5iV/SMcW+:ixaC4y9Oe5mERluqPHCiZ1c3
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2
- Target
  
  BQS_cs2.pyc
- Size
  
  53KB
- MD5
  
  698137a6cbcb03e6731cc18975b53d8a
- SHA1
  
  63909a15f87ea0893cabc41d9ba114e2a3bc3016
- SHA256
  
  8cecee9b835fe139ec0bdc1eb4233e71dd17f7eba6b8d07a803bbbc533e48ea8
- SHA512
  
  44ec631c7718f2c2823b9e757b4ae01af32dfde25c755869cd4233c747308d907faa1a953748730f7663fce8d6ef686a21a56ee9beb55124f3ed1bcac9395d0c
- SSDEEP
  
  768:LHXi0gJt70U7FyiCx3v7SiHwddO0GecGIf5:LHXiJIUQzZv7zwddOjeO
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4