General

  • Target

    6527902f392bc4927cd774ca0054612a634a585734ffa43547ce4bf6545edc6a.exe

  • Size

    1.1MB

  • Sample

    240610-srekfa1cpe

  • MD5

    2e19b62c01518fd6554ff4bb85b0d92f

  • SHA1

    f0992ac6d17f8aac2d5d72c7c964baf30f946660

  • SHA256

    6527902f392bc4927cd774ca0054612a634a585734ffa43547ce4bf6545edc6a

  • SHA512

    b82aac6e969566808b2ace48c43e577c2cce183da5646856fac629612349cbdfb9d9bac016e222f918b27f4b5ea1809a7cb7197792c6fddd22d264777dabd646

  • SSDEEP

    12288:WW7bwgAgRW3RlHU9MzJuTUc+1ChbFjPbIt4u4+dPM0Z5drgC3qhSqTJI6cNA4lNX:LwgfsTU9MzS+CzIGyrP3w9oUD6+2Z

Score
8/10

Malware Config

Targets

    • Target

      6527902f392bc4927cd774ca0054612a634a585734ffa43547ce4bf6545edc6a.exe

    • Size

      1.1MB

    • MD5

      2e19b62c01518fd6554ff4bb85b0d92f

    • SHA1

      f0992ac6d17f8aac2d5d72c7c964baf30f946660

    • SHA256

      6527902f392bc4927cd774ca0054612a634a585734ffa43547ce4bf6545edc6a

    • SHA512

      b82aac6e969566808b2ace48c43e577c2cce183da5646856fac629612349cbdfb9d9bac016e222f918b27f4b5ea1809a7cb7197792c6fddd22d264777dabd646

    • SSDEEP

      12288:WW7bwgAgRW3RlHU9MzJuTUc+1ChbFjPbIt4u4+dPM0Z5drgC3qhSqTJI6cNA4lNX:LwgfsTU9MzS+CzIGyrP3w9oUD6+2Z

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks