b7e985ca880e7fee460e2d4d403606aa1cbfd093d8aef52c1ea120f2ae3f8eef | Triage

Sharing

General

Target

SecuriteInfo.com.Suspicious.Win32.Save.a.19600.16490
Size

430KB
Sample

210926-1sssfsfdc6
MD5

b1f7f880924a93222a01cf3bc0a9ed83
SHA1

3b533f4fdd70bb7975bf3aa725e45fd3616b78e5
SHA256

b7e985ca880e7fee460e2d4d403606aa1cbfd093d8aef52c1ea120f2ae3f8eef
SHA512

910d170dc44674bc0df26c3071d8e79345cae9275d994530a2af6200bbb09598bef6fa1a54978dc2f6f984075f74229aa9ca96882a0ad633bf158ef18aacca0d

Score

5^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Suspicious.Win32.Save.a.19600.16490
- Size
  
  430KB
- MD5
  
  b1f7f880924a93222a01cf3bc0a9ed83
- SHA1
  
  3b533f4fdd70bb7975bf3aa725e45fd3616b78e5
- SHA256
  
  b7e985ca880e7fee460e2d4d403606aa1cbfd093d8aef52c1ea120f2ae3f8eef
- SHA512
  
  910d170dc44674bc0df26c3071d8e79345cae9275d994530a2af6200bbb09598bef6fa1a54978dc2f6f984075f74229aa9ca96882a0ad633bf158ef18aacca0d
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2