3fb935f3b274dddf25a926967ceb573ad0f990bff966583157849545c60c42e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb935f3b274dddf25a926967ceb573ad0f990bff966583157849545c60c42e4.exe
Size

631KB
Sample

240425-bqr1pscg49
MD5

7206084219e20fe7575aec63a3422a5c
SHA1

930508090c6ec226838189c1d6ca32035c2ac0ed
SHA256

3fb935f3b274dddf25a926967ceb573ad0f990bff966583157849545c60c42e4
SHA512

dc7d9d8788531b9b127d905d04d1a6731bc2ae499f96dac485cb995f82a57490af77bf500c60f169d82eea6e3fe8b1fa0a8f18a54cdd7efdc84757475bb7ba51
SSDEEP

6144:5z27B8gj9StARXpmTvIcw3/hxXYCckBWxTYDMnz5aO3xIiwETMAKo/x4Fl+c0XMF:hIXSQpmkBWxjniiwETmFmY

Score

7^/10

Malware Config

Targets

- Target
  
  3fb935f3b274dddf25a926967ceb573ad0f990bff966583157849545c60c42e4.exe
- Size
  
  631KB
- MD5
  
  7206084219e20fe7575aec63a3422a5c
- SHA1
  
  930508090c6ec226838189c1d6ca32035c2ac0ed
- SHA256
  
  3fb935f3b274dddf25a926967ceb573ad0f990bff966583157849545c60c42e4
- SHA512
  
  dc7d9d8788531b9b127d905d04d1a6731bc2ae499f96dac485cb995f82a57490af77bf500c60f169d82eea6e3fe8b1fa0a8f18a54cdd7efdc84757475bb7ba51
- SSDEEP
  
  6144:5z27B8gj9StARXpmTvIcw3/hxXYCckBWxTYDMnz5aO3xIiwETMAKo/x4Fl+c0XMF:hIXSQpmkBWxjniiwETmFmY
Score

7^/10
- Loads dropped DLL
- Suspicious use of NtCreateThreadExHideFromDebugger
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  375e8a08471dc6f85f3828488b1147b3
- SHA1
  
  1941484ac710fc301a7d31d6f1345e32a21546af
- SHA256
  
  4c86b238e64ecfaabe322a70fd78db229a663ccc209920f3385596a6e3205f78
- SHA512
  
  5ba29db13723ddf27b265a4548606274b850d076ae1f050c64044f8ccd020585ad766c85c3e20003a22f356875f76fb3679c89547b0962580d8e5a42b082b9a8
- SSDEEP
  
  192:MPtkumJX7zB22kGwfy0mtVgkCPOs91un:9702k5qpds9Qn
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4