2aab1a8bce3848219c13c3d5925ade4ead417b4facbf4da95aa681cef9c53a25 | Triage

Sharing

General

Target

2aab1a8bce3848219c13c3d5925ade4ead417b4facbf4da95aa681cef9c53a25.exe
Size

580KB
Sample

240523-bme7qsgb3s
MD5

c914daae7f4a07b373f97d1d1513f69d
SHA1

4f5b7990f441bdd854ddc71652e6de08b8c1e4e9
SHA256

2aab1a8bce3848219c13c3d5925ade4ead417b4facbf4da95aa681cef9c53a25
SHA512

526886501eaa6dfbfcd736a096588ac9409153ee713b47a03871ee36435357ca6f4fe6ca5f639fe5053c246607048f8e1a64033b5822532c8c179a35f89c88a9
SSDEEP

12288:uDGehLwotOekiCbIAaS7uXkNbuYCI9GpVHav3NF8o1:mFwUOICawuXAbuK9k0wo1

Score

5^/10

execution

Malware Config

Targets

- Target
  
  2aab1a8bce3848219c13c3d5925ade4ead417b4facbf4da95aa681cef9c53a25.exe
- Size
  
  580KB
- MD5
  
  c914daae7f4a07b373f97d1d1513f69d
- SHA1
  
  4f5b7990f441bdd854ddc71652e6de08b8c1e4e9
- SHA256
  
  2aab1a8bce3848219c13c3d5925ade4ead417b4facbf4da95aa681cef9c53a25
- SHA512
  
  526886501eaa6dfbfcd736a096588ac9409153ee713b47a03871ee36435357ca6f4fe6ca5f639fe5053c246607048f8e1a64033b5822532c8c179a35f89c88a9
- SSDEEP
  
  12288:uDGehLwotOekiCbIAaS7uXkNbuYCI9GpVHav3NF8o1:mFwUOICawuXAbuK9k0wo1
Score

5^/10

execution
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2