2d80e2a86f5808686430e76f3fd9e9243905ca1cb4fd66cb63afb64e88b75bea

Sharing

Copy URL

Twitter E-mail

General

Target

GGDH0.8.9.zip
Size

16.7MB
Sample

240620-vve2gsyemh
MD5

057e8700c0eb59533c078185cf02882d
SHA1

f542576f5d39e1f63322619190b73f831d3ed397
SHA256

2d80e2a86f5808686430e76f3fd9e9243905ca1cb4fd66cb63afb64e88b75bea
SHA512

103b0943cb4eeb420f1c5a7b36331ab4530a06f6fbcabe75e1de698f6f400a05386558a019790202c82b08cb2817129fc0219acdcf550c1f19d22f4e1246acf2
SSDEEP

393216:f8gmj6IGRNqBHQW+Q19PQAtkkgnEcC1N9P31rowcmjEVzfTPBy:kgW6WN94VQP31rBREVz7PBy

Score

5^/10

link qr

Malware Config

Targets

- Target
  
  GGDH0.8.9/GooseGooseDuckHack.exe
- Size
  
  11.0MB
- MD5
  
  c0cec5a1daff7007ed31d12f6cc369c3
- SHA1
  
  dea0dcb0384ec4734fce3efdd8ec2e407d6e0b2a
- SHA256
  
  7c805cace7f1452b866da5168b29aed80d3747916be7d8dccc2230183da98bf7
- SHA512
  
  31a646faf70abfb0264ba22c142c2d51bdb1ec3c3c61c70637890a5779313bf3cbaf0233b7ba1abaf65a6b7caadc58eb972dceed5e815b155085789be26015ac
- SSDEEP
  
  196608:HDdXM3wfp6EfhlYQIIx0Ku6wCck2bPZ+abl72PanuxCeyE83PH/RI466rm:jlM3wJplYVJKu6KdbPY2lisuxCe4PfR+
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2
- Target
  
  GGDH0.8.9/libcrypto-3-x64.dll
- Size
  
  3.6MB
- MD5
  
  25f432074392822316d322a7f9df82bc
- SHA1
  
  8cc79ed66b05bc49b376455231154f0f0358c953
- SHA256
  
  a247f7cc68d514bb0b7b118b4e6787f8a5dd3726ea5c9287e31f7016db84898a
- SHA512
  
  17a8253affc605ce5a11ee836d456c0624f5a5547675a95bdf33e12d3fe1d848ae22e205bc37ee529dd4a1c6c420156c56259f096e12ae6dbba737df484f9998
- SSDEEP
  
  98304:Cn+jMNcuIjGrdC0JDTZOYqEb3oPiA1CPwDvt3uF7DC:U4MNcuIjCC+TZOYqw3oqA1CPwDvt3uFy
Score

1^/10
behavioral3 behavioral4
- Target
  
  GGDH0.8.9/libssl-3-x64.dll
- Size
  
  536KB
- MD5
  
  af39d4e71dcce8b35222d210bc5d47bf
- SHA1
  
  0a2707d9092a0a755fa5aa1d9ffa50068e783c3a
- SHA256
  
  2f0d97efa794918de3ca860831a3758fa3ae4dd6a90210883308f027a15e1407
- SHA512
  
  64b3f0f5511221c0e1443dc0678011677a83dd9bb375aaae0628425f24523c6ac69782adc2ce6394dd2e4e1e04a42a8b8bbab3347aaaa95bcd1d17494afacb64
- SSDEEP
  
  6144:U1i9lDDmyNHYmOi+OH3VteY6EoCsUIkRo6+nQGFO1HCe8eRZXSr9gBKFe9Xbwh:NEK2C37BYCsUIktHCeXiZqKFe9XbA
Score

1^/10
behavioral5 behavioral6
- Target
  
  GGDH0.8.9/zlib1.dll
- Size
  
  87KB
- MD5
  
  6081bf111374fd3d8a833e0119422ae0
- SHA1
  
  b11f7c7e6efc44a47da27f3c08e21b19118886df
- SHA256
  
  afe30467d874dc60ef261bf37d748e79be9d6f4e60c408e6ba347b9817b75dec
- SHA512
  
  fcc8ed16653593d89422acef08ed14e2f3e55ff5b4297295a4bfeb75e617e0334fab9387d3c07f40e0bc7a3dc94bfdbe73a0892803c99e53863328802613dad1
- SSDEEP
  
  1536:w7Yad6wCcXIOzf0pJfpHy/SFhiIOcIOy74T9JBPl:wZd6wCsICf0pJo/ihASykT9JVl
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8