Overview

overview

10

Static

static

triage_dro...le.dll

windows7_x64

1

triage_dro...le.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    triage_dropped_file

  • Size

    413KB

  • Sample

    210722-q1ceems7sa

  • MD5

    c2a1e70791dc555e464697542357d011

  • SHA1

    bcc241383070f155c3754b93169b2e3353976381

  • SHA256

    4dc6bb4dbd780ab998eb173a40eb0825d3c242cf0b8543b7a358136054cee2e1

  • SHA512

    e6f50830d1c06cdbad5af7107a45ddcad3bca35d6b531c6b41ace0b54af82bdea6fdbe3232bfde70c97db4c468e229eaeea4cebf9087998326b3bf3b817bf5ef

Score
10/10

Malware Config

Targets

    • Target

      triage_dropped_file

    • Size

      413KB

    • MD5

      c2a1e70791dc555e464697542357d011

    • SHA1

      bcc241383070f155c3754b93169b2e3353976381

    • SHA256

      4dc6bb4dbd780ab998eb173a40eb0825d3c242cf0b8543b7a358136054cee2e1

    • SHA512

      e6f50830d1c06cdbad5af7107a45ddcad3bca35d6b531c6b41ace0b54af82bdea6fdbe3232bfde70c97db4c468e229eaeea4cebf9087998326b3bf3b817bf5ef

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks