a5521fb06e0f3c87340aa70973243c95d9b611af0ee25fa5d834b48deeae1f96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Kernel Spoofer.exe
Size

33.0MB
Sample

241012-p833kswdnr
MD5

675299c7cbd1c2ae7c86beca9d060b80
SHA1

734ffde03ee9314be51ecdb5fadd12564fdd4f8f
SHA256

a5521fb06e0f3c87340aa70973243c95d9b611af0ee25fa5d834b48deeae1f96
SHA512

27ae3933337bebf49d7e7fd36402600aba02b8b9704070718a5a0629870df4579f4553359e4d295b48c59e3129073e9848c258b89b884c9fa8ba54492d0402d4
SSDEEP

786432:+OMatQD1ByJbCmIkj+znk6pI3cgelPTjqY+cbYk:yf1BcbCmOTkyI3ReleJk

Score

5^/10

Malware Config

Targets

- Target
  
  Kernel Spoofer.exe
- Size
  
  33.0MB
- MD5
  
  675299c7cbd1c2ae7c86beca9d060b80
- SHA1
  
  734ffde03ee9314be51ecdb5fadd12564fdd4f8f
- SHA256
  
  a5521fb06e0f3c87340aa70973243c95d9b611af0ee25fa5d834b48deeae1f96
- SHA512
  
  27ae3933337bebf49d7e7fd36402600aba02b8b9704070718a5a0629870df4579f4553359e4d295b48c59e3129073e9848c258b89b884c9fa8ba54492d0402d4
- SSDEEP
  
  786432:+OMatQD1ByJbCmIkj+znk6pI3cgelPTjqY+cbYk:yf1BcbCmOTkyI3ReleJk
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2