91688e46b195ea7475b0caedb2b18613342883cbd29886628ef12a76f621e988 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Ödeme Onayı Kopyası.exe
Size

921KB
Sample

240614-qac9ya1hnd
MD5

d2c7ccf7ade1dd9cfe1fdbd518a13f6e
SHA1

d230fd8d0794cd3515c5bc95f1d2fcd16b0e4fb3
SHA256

91688e46b195ea7475b0caedb2b18613342883cbd29886628ef12a76f621e988
SHA512

f145c8426b5c4bf8d43fc20fea6fc481670e0006de84c70b2b2865c5fb83abb2cb0a58a44860c44ef2321778528fe3b9c2e931bc248e3fb4ebc6ec68a2928ce0
SSDEEP

24576:0wIC9jSMMMMMHLMMMMMMMMMMMMMo4H4I96u45SObZoo3c5lESaUnrRbzIWW:hIC9jSMMMMMHLMMMMMMMMMMMMMFsFdbx

Score

8^/10

execution

Malware Config

Targets

- Target
  
  Ödeme Onayı Kopyası.exe
- Size
  
  921KB
- MD5
  
  d2c7ccf7ade1dd9cfe1fdbd518a13f6e
- SHA1
  
  d230fd8d0794cd3515c5bc95f1d2fcd16b0e4fb3
- SHA256
  
  91688e46b195ea7475b0caedb2b18613342883cbd29886628ef12a76f621e988
- SHA512
  
  f145c8426b5c4bf8d43fc20fea6fc481670e0006de84c70b2b2865c5fb83abb2cb0a58a44860c44ef2321778528fe3b9c2e931bc248e3fb4ebc6ec68a2928ce0
- SSDEEP
  
  24576:0wIC9jSMMMMMHLMMMMMMMMMMMMMo4H4I96u45SObZoo3c5lESaUnrRbzIWW:hIC9jSMMMMMHLMMMMMMMMMMMMMFsFdbx
Score

8^/10

execution
- Command and Scripting Interpreter: PowerShell
  Run Powershell and hide display window.
  execution
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  Artiklen/endopterygote.com
- Size
  
  989KB
- MD5
  
  22917c17a0cf55abe740867314bcba85
- SHA1
  
  b8b667018188617cd410a738885fd5c5968f1bcb
- SHA256
  
  16e2287e1688be25e89a48506770f88f2da940fb66ab11322bab9c4de9a2935e
- SHA512
  
  a46afc64e775bbc890976d966891f2cedeea72c4c88edcb57b32261c2659c4c976b6803e9453b6604bae03c2b55817515aa7eedacd3be45588b19690154ec2c1
- SSDEEP
  
  768:Bwk+6hVRRAbffQq9245i0H1h/osZZr+hXUH2JiO/KjFzi5twcHqkw2LshgEAHeVO:cx7XX5O7SlLh0y+
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4