Overview

overview

10

Static

static

1

Stoic_AI.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Stoic_AI.exe

  • Size

    661.4MB

  • Sample

    250326-2fjvfstyhy

  • MD5

    3fc7efe507f0fc1b02d441ff12f4bba9

  • SHA1

    a86d5bf89904be858947853bdc3be646fdd04bca

  • SHA256

    1ec3d25e7a482e6cfd64a7f56704b30b877140bcdb692161e2f55d31ae8b60f3

  • SHA512

    2b0659345c39b6983e5c66fdc12113b4555cde907dba7accfb52420ae163f9ff8d889761cd45e84e853ec7145073dbd2b15d50d9f22df3ac9d45ca41895f12ff

  • SSDEEP

    98304:pn43kVKqiA/f3fP3mT4fScS/YhkA6VKqiA/f3fP3mT4fScS/YhkI6VKqiA/f3fPy:x4OPfSXA4PfSXI4PfSXp

Score
10/10
defense_evasiondiscoverymotwphishing

Malware Config

Targets

    • Target

      Stoic_AI.exe

    • Size

      661.4MB

    • MD5

      3fc7efe507f0fc1b02d441ff12f4bba9

    • SHA1

      a86d5bf89904be858947853bdc3be646fdd04bca

    • SHA256

      1ec3d25e7a482e6cfd64a7f56704b30b877140bcdb692161e2f55d31ae8b60f3

    • SHA512

      2b0659345c39b6983e5c66fdc12113b4555cde907dba7accfb52420ae163f9ff8d889761cd45e84e853ec7145073dbd2b15d50d9f22df3ac9d45ca41895f12ff

    • SSDEEP

      98304:pn43kVKqiA/f3fP3mT4fScS/YhkA6VKqiA/f3fP3mT4fScS/YhkI6VKqiA/f3fPy:x4OPfSXA4PfSXI4PfSXp

    Score
    10/10
    defense_evasiondiscoverymotwphishing

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Drops desktop.ini file(s)

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

      phishingmotw
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks