b6bb52f869f3c44294597d7a016b598a35d905582c9430cbf3dcc5fb280cc824 | Triage

Sharing

General

Target

Exes_768f26e734bc4554071e8756477ef307.exe
Size

1003KB
Sample

190821-7cjm1szyhj
MD5

768f26e734bc4554071e8756477ef307
SHA1

aa4d78b11f36f6481bb2289811e0d0d0317769f6
SHA256

b6bb52f869f3c44294597d7a016b598a35d905582c9430cbf3dcc5fb280cc824
SHA512

07a4ec82fe2e5d2876f9bdf22ac3044ed432da1682d51238d84f1cec37c003d5c9d48cf16c8d9b28b7bb4728cc9fdd648ecb4e7ba762140690376c95e54d95b0

Score

N/A

Malware Config

Targets

- Target
  
  Exes_768f26e734bc4554071e8756477ef307.exe
- Size
  
  1003KB
- MD5
  
  768f26e734bc4554071e8756477ef307
- SHA1
  
  aa4d78b11f36f6481bb2289811e0d0d0317769f6
- SHA256
  
  b6bb52f869f3c44294597d7a016b598a35d905582c9430cbf3dcc5fb280cc824
- SHA512
  
  07a4ec82fe2e5d2876f9bdf22ac3044ed432da1682d51238d84f1cec37c003d5c9d48cf16c8d9b28b7bb4728cc9fdd648ecb4e7ba762140690376c95e54d95b0
Score

N/A
- Drops startup file
- Loads dropped DLL
- Suspicious use of SetThreadContext
task1 task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Execution through Module Load

Persistence

Privilege Escalation

Access Token Manipulation

Process Injection

Defense Evasion

Access Token Manipulation

Process Injection

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

task1

task2