Overview

overview

7

Static

static

3

2835573571...57.exe

windows7-x64

2835573571...57.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    28355735712df444fbac698b656b053424ed6454fd3a4eaa6c41be1a3aab7d57

  • Size

    596KB

  • Sample

    240419-bw7y4sdh5w

  • MD5

    bf7009315a8152ca8cedbc13aff063c6

  • SHA1

    b9f3e2cb5f44ee85f41b6d0c2812641adca75af8

  • SHA256

    28355735712df444fbac698b656b053424ed6454fd3a4eaa6c41be1a3aab7d57

  • SHA512

    34fcfc974a0062e9b9bf047165269fae2aad2ac093ba07d37dabbda799f9ac031af75abbb73cf11fdd9e1863229fe302f633a1474546011bd72569fa0cc122d9

  • SSDEEP

    12288:cXvtax0mS42i1S6jdFvEALUNEDdtxtW79/qGqabRlD:cXF4X1tjXECIEzxtru

Score
7/10
agilenet

Malware Config

Targets

    • Target

      28355735712df444fbac698b656b053424ed6454fd3a4eaa6c41be1a3aab7d57

    • Size

      596KB

    • MD5

      bf7009315a8152ca8cedbc13aff063c6

    • SHA1

      b9f3e2cb5f44ee85f41b6d0c2812641adca75af8

    • SHA256

      28355735712df444fbac698b656b053424ed6454fd3a4eaa6c41be1a3aab7d57

    • SHA512

      34fcfc974a0062e9b9bf047165269fae2aad2ac093ba07d37dabbda799f9ac031af75abbb73cf11fdd9e1863229fe302f633a1474546011bd72569fa0cc122d9

    • SSDEEP

      12288:cXvtax0mS42i1S6jdFvEALUNEDdtxtW79/qGqabRlD:cXF4X1tjXECIEzxtru

    Score
    7/10
    agilenet

    • Deletes itself

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks