ddd3f52feeb4b80ffd5f0783378f854d02af440481d3f9b6173718eeeb00c249 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

screenshot.png

windows10-2004-x64

8

Sharing

General

Target

screenshot.png
Size

367KB
Sample

240607-cglb8sfg8x
MD5

1af7b32ae7c033158321b75323cebaeb
SHA1

05103eead49bb03f2efddc67588359d6e099d010
SHA256

ddd3f52feeb4b80ffd5f0783378f854d02af440481d3f9b6173718eeeb00c249
SHA512

4d5b598951de46fb732b7438d820a9bd110a8cf00cb12b6a08a02729121673cf38dc810b444841cfe136458c3869b2413ba340488fabd70a96ca1e51486f63fa
SSDEEP

6144:FQ+MEF2N8jySixEP7htSW+i4B2ImFSf0w4vOKtmzIdv8zhLtg7tjz:FQ+Mj+jJixEPmWl62Imwf/QWIdAhxgBz

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

screenshot.png

Resource

win10v2004-20240508-de

windows10-2004-x64

19 signatures

1800 seconds

Malware Config

Targets

- Target
  
  screenshot.png
- Size
  
  367KB
- MD5
  
  1af7b32ae7c033158321b75323cebaeb
- SHA1
  
  05103eead49bb03f2efddc67588359d6e099d010
- SHA256
  
  ddd3f52feeb4b80ffd5f0783378f854d02af440481d3f9b6173718eeeb00c249
- SHA512
  
  4d5b598951de46fb732b7438d820a9bd110a8cf00cb12b6a08a02729121673cf38dc810b444841cfe136458c3869b2413ba340488fabd70a96ca1e51486f63fa
- SSDEEP
  
  6144:FQ+MEF2N8jySixEP7htSW+i4B2ImFSf0w4vOKtmzIdv8zhLtg7tjz:FQ+Mj+jJixEPmWl62Imwf/QWIdAhxgBz
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy