3210cb786e13add6f0be5a7b8754e014dc12543c0a1acf25b09ef1ee2b8c34f9 | Triage

Sharing

General

Target

incognito.zip
Size

18.7MB
Sample

240527-sgk98she27
MD5

cb5b6cb73e8a9562dea9abcd1dd33a7c
SHA1

fa043262abec7938fe85c693ed33c2fc612798d2
SHA256

3210cb786e13add6f0be5a7b8754e014dc12543c0a1acf25b09ef1ee2b8c34f9
SHA512

6de74ea842ffce04baff2e5a6e5ddb1aa134017f222764088ff349223347594ac01e3ee708e034fee31d4d3109f9b4d1cdc442cd5e66163cf83d2245f028323d
SSDEEP

393216:luD3A7A/mLfnrCi/uyqISF9MkF4QM+SwCurPi+V+tRJjLb1YfSP:MDqLNuyqISY/QMf46+Utf/bF

Score

7^/10

Malware Config

Targets

- Target
  
  incognito/bin/incognito-luau.dll
- Size
  
  1.3MB
- MD5
  
  157fd035b2a344a94166d7db3756df0e
- SHA1
  
  f221d28c1deb80b4e8d9201226435aefce6b0f75
- SHA256
  
  8716c75aff75941711aff8770836f47eb9a254416089ef3571c6fc9a338b3009
- SHA512
  
  fad0174fbd22f58dd4fcdaad8378c214270b4faeaca64d9cb306f50e9316072a4c417c5723c4123b8bf94a3dba6ef4e3303ec60f4a2cf0c3a54d8ab375ea717d
- SSDEEP
  
  24576:ZqBSLRktEBl6blwTUMD4zB1VU2bFjYWR0pMQUAqLRAovh4bSAXVVRNRfMXZO:ZqBSLRkt8l6blSU//+2bFfvA1SQVVRNk
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2
- Target
  
  incognito/thegreatestexploit.exe
- Size
  
  17.9MB
- MD5
  
  985a7c5f0ee35a1984ed8b0c18847643
- SHA1
  
  2bf0487f62ef4a521d3d51b01a4b8b2625de2a91
- SHA256
  
  15aa7b28eb003b5bfea6679de772a34e59372f2155a87ba8f05ce8c4118e2e3e
- SHA512
  
  9230cf00c8145e199586e478e7db307e75d729b98af24ec1b73e4893348380bd81affe436bee7aea8dc2e1b22d0b7e49af98428756a5832df22f5411e6e7a7d8
- SSDEEP
  
  393216:qtabzFXC2ZKqm6GhXcrRwBsoM8km9XWkdQctnGHS4sak:5blKqm6GmSBs12Gkd/tG
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4