fb80bc7dda3afe04cf84b7f3ed37cc414eae0aec58a599bc65928c05faf5b077 | Triage

Sharing

General

Target

fb80bc7dda3afe04cf84b7f3ed37cc414eae0aec58a599bc65928c05faf5b077
Size

1.3MB
Sample

221124-j7wn8adh61
MD5

c56526ea2b1c975379721087cccc5aad
SHA1

dd3ab68c74cf36881ff98d8c1db828518a10b3a4
SHA256

fb80bc7dda3afe04cf84b7f3ed37cc414eae0aec58a599bc65928c05faf5b077
SHA512

dee383e88ae02963cb33c767e62aa9d5c2672a52834ff95accf155af10a91a1e79879500fdf11ab36178476e25c97adaf35c9d185a5df52559bd0b9341934ced
SSDEEP

24576:TrKqlGCPcJKwybUDwEZZODYmR9G+gnbkk6XRJfe3DqYO/KpLwFfngWX4VmJPak5:TrKo4ZwCOnYjVmJPaq

Score

5^/10

Malware Config

Targets

- Target
  
  fb80bc7dda3afe04cf84b7f3ed37cc414eae0aec58a599bc65928c05faf5b077
- Size
  
  1.3MB
- MD5
  
  c56526ea2b1c975379721087cccc5aad
- SHA1
  
  dd3ab68c74cf36881ff98d8c1db828518a10b3a4
- SHA256
  
  fb80bc7dda3afe04cf84b7f3ed37cc414eae0aec58a599bc65928c05faf5b077
- SHA512
  
  dee383e88ae02963cb33c767e62aa9d5c2672a52834ff95accf155af10a91a1e79879500fdf11ab36178476e25c97adaf35c9d185a5df52559bd0b9341934ced
- SSDEEP
  
  24576:TrKqlGCPcJKwybUDwEZZODYmR9G+gnbkk6XRJfe3DqYO/KpLwFfngWX4VmJPak5:TrKo4ZwCOnYjVmJPaq
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2