Overview

overview

5

Static

static

778dd9f330...d8.exe

windows7-x64

5

778dd9f330...d8.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    778dd9f3305d4e94a621c06be42d39c1ac96c92ade0341ec93471b526d17cfd8

  • Size

    1.6MB

  • Sample

    221123-pavcsaah48

  • MD5

    7a4ab8d4d50263dbd93dbcf09014e93d

  • SHA1

    1e2669c4a904813813ce866530313dc1de2bc49f

  • SHA256

    778dd9f3305d4e94a621c06be42d39c1ac96c92ade0341ec93471b526d17cfd8

  • SHA512

    bcdd7ba853eb68eba6d30bcac14f95817a2d2861b8acd474966bc391efa69737b993140f044f43cab960027702771138a1c4b562eb4c0d35acf654f1a7691e7d

  • SSDEEP

    24576:xzD5urNhRWx2Mk4JJQByw7Imlq3g495S0PwbphrpgXXOZuv/rTWeR5j4UwJZQUY+:D6/ye0PIphrp9Zuvjqa0UidR

Score
5/10

Malware Config

Targets

    • Target

      778dd9f3305d4e94a621c06be42d39c1ac96c92ade0341ec93471b526d17cfd8

    • Size

      1.6MB

    • MD5

      7a4ab8d4d50263dbd93dbcf09014e93d

    • SHA1

      1e2669c4a904813813ce866530313dc1de2bc49f

    • SHA256

      778dd9f3305d4e94a621c06be42d39c1ac96c92ade0341ec93471b526d17cfd8

    • SHA512

      bcdd7ba853eb68eba6d30bcac14f95817a2d2861b8acd474966bc391efa69737b993140f044f43cab960027702771138a1c4b562eb4c0d35acf654f1a7691e7d

    • SSDEEP

      24576:xzD5urNhRWx2Mk4JJQByw7Imlq3g495S0PwbphrpgXXOZuv/rTWeR5j4UwJZQUY+:D6/ye0PIphrp9Zuvjqa0UidR

    Score
    5/10

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks