tmp

General
Target

tmp

Size

405KB

Sample

220514-sem12scgcm

Score
8 /10
MD5

bc166afb1c67a81b51b3b0bcf2b8d927

SHA1

786a7d3c28ea5cb5a9ba0955b072a553ef7fb3ca

SHA256

5247fcbf0745007134df81227f6bcf5c6e5195f6d211ad6b8684537f1d3566f3

SHA512

9744fd31ee649e63aecfe6822db34adc95ad1a909e81c9067b66bae0fbb2220fa203d130dd823d6c5a234cd1876ad1ebc73286189e4c5c6e7b07778c8def7f99

Malware Config
Targets
Target

tmp

MD5

bc166afb1c67a81b51b3b0bcf2b8d927

Filesize

405KB

Score
8/10
SHA1

786a7d3c28ea5cb5a9ba0955b072a553ef7fb3ca

SHA256

5247fcbf0745007134df81227f6bcf5c6e5195f6d211ad6b8684537f1d3566f3

SHA512

9744fd31ee649e63aecfe6822db34adc95ad1a909e81c9067b66bae0fbb2220fa203d130dd823d6c5a234cd1876ad1ebc73286189e4c5c6e7b07778c8def7f99

Signatures

  • Executes dropped EXE

  • Drops startup file

  • Loads dropped DLL

  • Suspicious use of SetThreadContext

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          8/10

                          behavioral2

                          8/10