4fd5453390d3915c066b008dfa65ffb47d3922c124b4d5c098324f95f8a934fa | Triage

Resubmissions

01/06/2024, 16:23

240601-tvtn7shb65 7

01/06/2024, 16:22

240601-tvdmzshb56 7

01/06/2024, 16:18

240601-tr1ncagd5z 7

Sharing

Copy URL Twitter E-mail

General

Target

incognito.zip
Size

18.8MB
Sample

240601-tvtn7shb65
MD5

f24aee225a6cea3616dd54cb23f52338
SHA1

756e3e192ea0d8849fd293a22f5c4f8cfbb12ffd
SHA256

4fd5453390d3915c066b008dfa65ffb47d3922c124b4d5c098324f95f8a934fa
SHA512

a80dd7d1eb112b71103ae5119a5df98e70456b1804e48109d9f56a466a58b5ed3210b3d13851ebcf0843ec63f57989eaa9e97e7aebfcac5e6f739b0382cd4208
SSDEEP

393216:1MuJKZPnvYX/wAeuG2Vi8rVqwqo6VUmFkIUMBbl9xu9aOQ:1sZAwAeuG1AqwzimIzBZ9

Score

7^/10

Malware Config

Targets

- Target
  
  incognito/thegreatestexploit.exe
- Size
  
  17.9MB
- MD5
  
  985a7c5f0ee35a1984ed8b0c18847643
- SHA1
  
  2bf0487f62ef4a521d3d51b01a4b8b2625de2a91
- SHA256
  
  15aa7b28eb003b5bfea6679de772a34e59372f2155a87ba8f05ce8c4118e2e3e
- SHA512
  
  9230cf00c8145e199586e478e7db307e75d729b98af24ec1b73e4893348380bd81affe436bee7aea8dc2e1b22d0b7e49af98428756a5832df22f5411e6e7a7d8
- SSDEEP
  
  393216:qtabzFXC2ZKqm6GhXcrRwBsoM8km9XWkdQctnGHS4sak:5blKqm6GmSBs12Gkd/tG
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1