673aa85cb6448f7169724bce79a7eb418306b97acc4e5fa0f98ad6c6772a7707 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-07_865a2c116652b7856857732c181693ff_mafia_revil
Size

14.4MB
Sample

240507-vzh9psgb6z
MD5

865a2c116652b7856857732c181693ff
SHA1

cf4a02c5a78657d67984b09cccca93ee8d1ddd92
SHA256

673aa85cb6448f7169724bce79a7eb418306b97acc4e5fa0f98ad6c6772a7707
SHA512

8ea89c29804a469c50e16b4a167a1e7d2c13e3dad2684255edf6f1cc1afe4e5f6dd8eb31673e1151439d26169615f6b7efe8c99e66c839eef56e0d76509b38b1
SSDEEP

393216:1VyxYtON/uEoo9VvHO3/M/bZIo07opsu30d2N5cj8gwEYXvx1YHjxvmdqz+GtxAO:1EOtON/uEoo9VvHO3/M/bZIo07opsu30

Score

5^/10

Malware Config

Targets

- Target
  
  2024-05-07_865a2c116652b7856857732c181693ff_mafia_revil
- Size
  
  14.4MB
- MD5
  
  865a2c116652b7856857732c181693ff
- SHA1
  
  cf4a02c5a78657d67984b09cccca93ee8d1ddd92
- SHA256
  
  673aa85cb6448f7169724bce79a7eb418306b97acc4e5fa0f98ad6c6772a7707
- SHA512
  
  8ea89c29804a469c50e16b4a167a1e7d2c13e3dad2684255edf6f1cc1afe4e5f6dd8eb31673e1151439d26169615f6b7efe8c99e66c839eef56e0d76509b38b1
- SSDEEP
  
  393216:1VyxYtON/uEoo9VvHO3/M/bZIo07opsu30d2N5cj8gwEYXvx1YHjxvmdqz+GtxAO:1EOtON/uEoo9VvHO3/M/bZIo07opsu30
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2