Overview

overview

8

Static

static

tmp.exe

windows7_x64

8

tmp.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp

  • Size

    405KB

  • Sample

    220514-sem12scgcm

  • MD5

    bc166afb1c67a81b51b3b0bcf2b8d927

  • SHA1

    786a7d3c28ea5cb5a9ba0955b072a553ef7fb3ca

  • SHA256

    5247fcbf0745007134df81227f6bcf5c6e5195f6d211ad6b8684537f1d3566f3

  • SHA512

    9744fd31ee649e63aecfe6822db34adc95ad1a909e81c9067b66bae0fbb2220fa203d130dd823d6c5a234cd1876ad1ebc73286189e4c5c6e7b07778c8def7f99

Score
8/10

Malware Config

Targets

    • Target

      tmp

    • Size

      405KB

    • MD5

      bc166afb1c67a81b51b3b0bcf2b8d927

    • SHA1

      786a7d3c28ea5cb5a9ba0955b072a553ef7fb3ca

    • SHA256

      5247fcbf0745007134df81227f6bcf5c6e5195f6d211ad6b8684537f1d3566f3

    • SHA512

      9744fd31ee649e63aecfe6822db34adc95ad1a909e81c9067b66bae0fbb2220fa203d130dd823d6c5a234cd1876ad1ebc73286189e4c5c6e7b07778c8def7f99

    Score
    8/10

    • Executes dropped EXE

    • Drops startup file

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks