f74edde47e887a5daaaa790f78158b0b516636329b6f29ac9934a3ab3c934d5b | Triage

Sharing

General

Target

Stix.rar
Size

11.4MB
Sample

241121-qvmdcatakn
MD5

d80fff7afb88e4e619cf7bfecbc268ba
SHA1

2c300931fba98bd78c87052ca917895b3e7404b3
SHA256

f74edde47e887a5daaaa790f78158b0b516636329b6f29ac9934a3ab3c934d5b
SHA512

82ebbb66e35b921ffcb2b4ca4f3b0967d96590e901e9b6bce9f25a55438f2366ccee3291777479ae9476ee4796f6f79dfea2deb19b401d648942d8a9d8108a84
SSDEEP

196608:CwMULOVLMoNf+alt0ObCxBE4WGxYuywVj9qluACB/EX6qZcyANckyCbrqMmo5iTh:C7wOCoNmaq6LVFwVj9+utY6qayANckNk

Score

5^/10

Malware Config

Targets

- Target
  
  Stix/Stix Optimizer.exe
- Size
  
  789KB
- MD5
  
  e542c1ea5931d8d93362541d272322bc
- SHA1
  
  fbaf7a9d95c9a69faa47561a3aba211854dbf27b
- SHA256
  
  02869add6f0b2524b57af17a8739b38a59bc5713a965e994a8a8d0cd73d70fd8
- SHA512
  
  a5133034fb982b6172fb463f46a2ba12cd94ea0eccc0777513dd61439edc9e924baa012d664c5a0c0c1fbabcb83fc389a78e87a1e5b6ad65ea0a8175ed4f73b2
- SSDEEP
  
  12288:NtMex5PX9VlSXymjerP5m8NnExymhHc+9LV:rVLVVozj+xm8BExr9B
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1