ddf0dd6e18a3ca9bf8a8ad013d3efe71aa6efa99a70b09f3963ebc4d3d9719e7 | Triage

Resubmissions

15/09/2024, 00:32

240915-av19hawcjd 8

Sharing

Copy URL Twitter E-mail

General

Target

hooky.exe
Size

14.4MB
Sample

240915-av19hawcjd
MD5

d6547518efaaf31a00ceaee618effeab
SHA1

f964d44ed4eb77724b6acd3c94c67fa8e545eee7
SHA256

ddf0dd6e18a3ca9bf8a8ad013d3efe71aa6efa99a70b09f3963ebc4d3d9719e7
SHA512

2891b725013d1244f58ab1d4d1cdf332733d94564ad2b6615e6d1d173074b4d6af7eb354fc12a9c2c03546a188adbd33b09e0598e92e1b0d9a6b944f409e5761
SSDEEP

196608:ZdmFXNH9k701MlhT2nMI/YtqFtkCzwEdgUrCBzu5fCwdKA97h1qbVRQC0d3psHJ0:gAWMlZi2etkCzwEdTcOXVmbBHXBk+F

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  hooky.exe
- Size
  
  14.4MB
- MD5
  
  d6547518efaaf31a00ceaee618effeab
- SHA1
  
  f964d44ed4eb77724b6acd3c94c67fa8e545eee7
- SHA256
  
  ddf0dd6e18a3ca9bf8a8ad013d3efe71aa6efa99a70b09f3963ebc4d3d9719e7
- SHA512
  
  2891b725013d1244f58ab1d4d1cdf332733d94564ad2b6615e6d1d173074b4d6af7eb354fc12a9c2c03546a188adbd33b09e0598e92e1b0d9a6b944f409e5761
- SSDEEP
  
  196608:ZdmFXNH9k701MlhT2nMI/YtqFtkCzwEdgUrCBzu5fCwdKA97h1qbVRQC0d3psHJ0:gAWMlZi2etkCzwEdTcOXVmbBHXBk+F
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution