353be7f64ffa25bf3d8ea90b55b9b288633883f00f328841007f82324a37a4d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Dhl shipment documents.exe
Size

816KB
Sample

200707-48crmtlh62
MD5

c36de042c317262fbeb25e0901e2441e
SHA1

c4f38f77ef79cd4b44e1f6344f492281946fd707
SHA256

353be7f64ffa25bf3d8ea90b55b9b288633883f00f328841007f82324a37a4d7
SHA512

b73e515912165b9a7838e4bde1ed590c7f65221243f56cc5bc9e735fc625c44b87758b04e6a1a1505ff44b42b10012c8855b04c6f3483180cf19a35e25f9b1ee

Score

5^/10

Malware Config

Targets

- Target
  
  Dhl shipment documents.exe
- Size
  
  816KB
- MD5
  
  c36de042c317262fbeb25e0901e2441e
- SHA1
  
  c4f38f77ef79cd4b44e1f6344f492281946fd707
- SHA256
  
  353be7f64ffa25bf3d8ea90b55b9b288633883f00f328841007f82324a37a4d7
- SHA512
  
  b73e515912165b9a7838e4bde1ed590c7f65221243f56cc5bc9e735fc625c44b87758b04e6a1a1505ff44b42b10012c8855b04c6f3483180cf19a35e25f9b1ee
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2