777516469e953cb8ef945f558388aa27a4bb0e4849d35295a54fa9b104916c73 | Triage

Resubmissions

04-08-2024 01:11

240804-bkcntswdkh 10

04-08-2024 01:08

240804-bhmq1swcqa 5

Sharing

General

Target

Muse_Hub.exe
Size

42.8MB
Sample

240804-bhmq1swcqa
MD5

f6a5eeafe3927f8b60edd4710f472526
SHA1

90990dc31a9ce75456d68653309e4b37291bf54e
SHA256

777516469e953cb8ef945f558388aa27a4bb0e4849d35295a54fa9b104916c73
SHA512

03efbe3004b1434fa13e230b1c8f8526cfafeb94ee6d9a4e1b65ab316d183e86c39d1af0def4a48d3d65d186d5f7b3c76352b57ae40288e9171893ca58c9f4e4
SSDEEP

786432:WxfDPC5XlW/BIWj9Tp+V9w/PHyNmG3i+QpNT0Oxwkyh2YvLYpv1A8AmZ4HEleUau:WxfD6yaeYV9EKNmG3iYOGke2+0nA8AmR

Score

5^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  Muse_Hub.exe
- Size
  
  42.8MB
- MD5
  
  f6a5eeafe3927f8b60edd4710f472526
- SHA1
  
  90990dc31a9ce75456d68653309e4b37291bf54e
- SHA256
  
  777516469e953cb8ef945f558388aa27a4bb0e4849d35295a54fa9b104916c73
- SHA512
  
  03efbe3004b1434fa13e230b1c8f8526cfafeb94ee6d9a4e1b65ab316d183e86c39d1af0def4a48d3d65d186d5f7b3c76352b57ae40288e9171893ca58c9f4e4
- SSDEEP
  
  786432:WxfDPC5XlW/BIWj9Tp+V9w/PHyNmG3i+QpNT0Oxwkyh2YvLYpv1A8AmZ4HEleUau:WxfD6yaeYV9EKNmG3iYOGke2+0nA8AmR
Score

5^/10

discovery persistence privilege_escalation
- Event Triggered Execution: Component Object Model Hijacking
  Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
  persistence privilege_escalation
- Suspicious use of NtCreateThreadExHideFromDebugger
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Component Object Model Hijacking

Privilege Escalation

Event Triggered Execution

Change Default File Association

Component Object Model Hijacking

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistenceprivilege_escalation