a59da8c3da0e8aa6621ef7aeb786958ea98691060e741ac5abcb328d37f6e947 | Triage

Sharing

General

Target

a59da8c3da0e8aa6621ef7aeb786958ea98691060e741ac5abcb328d37f6e947.exe
Size

787KB
Sample

240523-cajj3ahd5w
MD5

6c984dd6faad761de792293a9cd30c1e
SHA1

bc17076ca2251c31ae3b0cccc2030de0fa6dcd74
SHA256

a59da8c3da0e8aa6621ef7aeb786958ea98691060e741ac5abcb328d37f6e947
SHA512

05ea3f148d5b172d6dda8ace37f557a53b18deeed983e65b7c927e45c9edc5b9fe7b7def6761a0a167655f90e165ca0cbf0024833b2f107cd578e6c520ed4f54
SSDEEP

12288:DDGTAY8L9W1KOFxJUuuz9PhigvacmLzlUannZIVlUfND1uAbf43vGxIRK/dUbz:IAzRW1KMxJ6igTmKKnZIVlUPM3Un1Ubz

Score

5^/10

execution

Malware Config

Targets

- Target
  
  a59da8c3da0e8aa6621ef7aeb786958ea98691060e741ac5abcb328d37f6e947.exe
- Size
  
  787KB
- MD5
  
  6c984dd6faad761de792293a9cd30c1e
- SHA1
  
  bc17076ca2251c31ae3b0cccc2030de0fa6dcd74
- SHA256
  
  a59da8c3da0e8aa6621ef7aeb786958ea98691060e741ac5abcb328d37f6e947
- SHA512
  
  05ea3f148d5b172d6dda8ace37f557a53b18deeed983e65b7c927e45c9edc5b9fe7b7def6761a0a167655f90e165ca0cbf0024833b2f107cd578e6c520ed4f54
- SSDEEP
  
  12288:DDGTAY8L9W1KOFxJUuuz9PhigvacmLzlUannZIVlUfND1uAbf43vGxIRK/dUbz:IAzRW1KMxJ6igTmKKnZIVlUPM3Un1Ubz
Score

5^/10

execution
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2