General

  • Target

    204ca6633ea2a007dd50e596323c3310N.exe

  • Size

    3.5MB

  • Sample

    240825-ljrrgayfqq

  • MD5

    204ca6633ea2a007dd50e596323c3310

  • SHA1

    90856fa116c9d9cf03dec800332a76a870a14af1

  • SHA256

    2725568a5a09a2deeb0e66afef69decfa2530224c3b28842bfdabc950d97eac9

  • SHA512

    06ae2d54701b1d50d0c35a7cb5f0b7e55b259da3b3788aa9823d98fc8a633d3800e5f341eaf650acc7fa2fd15fe7ab8073adf793f254dac085c1f742194f4ecb

  • SSDEEP

    49152:cwVJ/qUQ5F5EexZD63Wb5wSSnebipRCoBRI17fMt6v77/lClNiuHL1jGgJ6OkJ:3/257I6GnaipRT/md77AlDL1XsOe

Malware Config

Targets

    • Target

      204ca6633ea2a007dd50e596323c3310N.exe

    • Size

      3.5MB

    • MD5

      204ca6633ea2a007dd50e596323c3310

    • SHA1

      90856fa116c9d9cf03dec800332a76a870a14af1

    • SHA256

      2725568a5a09a2deeb0e66afef69decfa2530224c3b28842bfdabc950d97eac9

    • SHA512

      06ae2d54701b1d50d0c35a7cb5f0b7e55b259da3b3788aa9823d98fc8a633d3800e5f341eaf650acc7fa2fd15fe7ab8073adf793f254dac085c1f742194f4ecb

    • SSDEEP

      49152:cwVJ/qUQ5F5EexZD63Wb5wSSnebipRCoBRI17fMt6v77/lClNiuHL1jGgJ6OkJ:3/257I6GnaipRT/md77AlDL1XsOe

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks