Overview

overview

5

Static

static

857a2de0f9...8a.exe

windows7-x64

5

857a2de0f9...8a.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    857a2de0f9bf311a68d88baf20e5a76e50d17c2ffa2393bd89ef56c289377a8a

  • Size

    1.5MB

  • Sample

    221124-xnjgfach57

  • MD5

    cdb3ce1b5888f802a22d9dd6310ab5cb

  • SHA1

    2f912b266cb4c54bcc6c9cc4e7e00a3713755139

  • SHA256

    857a2de0f9bf311a68d88baf20e5a76e50d17c2ffa2393bd89ef56c289377a8a

  • SHA512

    b32a9cf30fe35d0f71d7e7d2f8a08527589f128e0c6b635d7e199a5c8789b7745b65cf07e3a0b55a82cfb106be2a7e7cb399ec4fe06b445113eff512cee65267

  • SSDEEP

    24576:dzD5urNhRWx2Mk4JJQByw7Imlq3g495S0PwbphrpgXXOZuv/rTWeR5j4UwJZQUYo:36/ye0PIphrp9Zuvjqa0Uidj

Score
5/10

Malware Config

Targets

    • Target

      857a2de0f9bf311a68d88baf20e5a76e50d17c2ffa2393bd89ef56c289377a8a

    • Size

      1.5MB

    • MD5

      cdb3ce1b5888f802a22d9dd6310ab5cb

    • SHA1

      2f912b266cb4c54bcc6c9cc4e7e00a3713755139

    • SHA256

      857a2de0f9bf311a68d88baf20e5a76e50d17c2ffa2393bd89ef56c289377a8a

    • SHA512

      b32a9cf30fe35d0f71d7e7d2f8a08527589f128e0c6b635d7e199a5c8789b7745b65cf07e3a0b55a82cfb106be2a7e7cb399ec4fe06b445113eff512cee65267

    • SSDEEP

      24576:dzD5urNhRWx2Mk4JJQByw7Imlq3g495S0PwbphrpgXXOZuv/rTWeR5j4UwJZQUYo:36/ye0PIphrp9Zuvjqa0Uidj

    Score
    5/10

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks