00d78b6ff237c0df3e436b73e927ad9d70dafb73e8ba4950868d9fbf920478b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

JM Soloutions Loader.exe
Size

1.4MB
Sample

240820-prfwqawaqm
MD5

2a4d4da0839146e500af4fe56a7d39ea
SHA1

897ffd113087d9db0bb4c297474a3e153b7fc09c
SHA256

00d78b6ff237c0df3e436b73e927ad9d70dafb73e8ba4950868d9fbf920478b3
SHA512

988fb076c53bc06e0edea8a8f8bcfae409a28a6ca714916a2cb47cb4a092697e4e278025c928f4ef028c509a132a4b048a3961b120b684eae4edff0b445d59f7
SSDEEP

24576:RhrQRIY3t1znNRlg+awqwUwExIPfA8OLhJ9yp/xCcTOuIrmkSkkkkkjOWnN4:XUIgh/qNwffAj3g/bTqSk6WnN

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  JM Soloutions Loader.exe
- Size
  
  1.4MB
- MD5
  
  2a4d4da0839146e500af4fe56a7d39ea
- SHA1
  
  897ffd113087d9db0bb4c297474a3e153b7fc09c
- SHA256
  
  00d78b6ff237c0df3e436b73e927ad9d70dafb73e8ba4950868d9fbf920478b3
- SHA512
  
  988fb076c53bc06e0edea8a8f8bcfae409a28a6ca714916a2cb47cb4a092697e4e278025c928f4ef028c509a132a4b048a3961b120b684eae4edff0b445d59f7
- SSDEEP
  
  24576:RhrQRIY3t1znNRlg+awqwUwExIPfA8OLhJ9yp/xCcTOuIrmkSkkkkkjOWnN4:XUIgh/qNwffAj3g/bTqSk6WnN
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2