77a68670825c8e42c84d7cbbbde64c566b260ef9574ee3ab25ba64f99b80da60 | Triage

Sharing

General

Target

CafeStella.exe
Size

4.5MB
Sample

241120-gbls2axjbm
MD5

2271f753137e5ac709d6d005ebd99756
SHA1

c25865be1d27877968f15871de38a57d9a49f306
SHA256

77a68670825c8e42c84d7cbbbde64c566b260ef9574ee3ab25ba64f99b80da60
SHA512

2170eeb77078bce9239995faf2eb8a893c17112b3f3599dd4fe6b1fdd632095104ffaa8aac492b05cf6dcecc77d0b98924e43c73eac920e7652ddde80e53fd25
SSDEEP

98304:H8ckMkFAB5V9r8kckghmq5qW6K27339Ynv52KU:H8cZd8kcgqC39SU

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  CafeStella.exe
- Size
  
  4.5MB
- MD5
  
  2271f753137e5ac709d6d005ebd99756
- SHA1
  
  c25865be1d27877968f15871de38a57d9a49f306
- SHA256
  
  77a68670825c8e42c84d7cbbbde64c566b260ef9574ee3ab25ba64f99b80da60
- SHA512
  
  2170eeb77078bce9239995faf2eb8a893c17112b3f3599dd4fe6b1fdd632095104ffaa8aac492b05cf6dcecc77d0b98924e43c73eac920e7652ddde80e53fd25
- SSDEEP
  
  98304:H8ckMkFAB5V9r8kckghmq5qW6K27339Ynv52KU:H8cZd8kcgqC39SU
Score

5^/10

discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2