62d15963389ed4f34797a16e3783c9f42f89a81f72a9fe3c47c471c1e366ae60 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62d15963389ed4f34797a16e3783c9f42f89a81f72a9fe3c47c471c1e366ae60
Size

1.3MB
Sample

221125-ttzh3aag24
MD5

a5d8f05b6d7fc40c6b33c596f8ed7af3
SHA1

5b4f3f9daec6aaeef7bb7b94542dde445646be13
SHA256

62d15963389ed4f34797a16e3783c9f42f89a81f72a9fe3c47c471c1e366ae60
SHA512

74d5469abd7b0bfdf91f9b0421307ee7752abfe5465ce90df3e95aa587b657809a26f6ce4768a145a0fdb63cc1093e9eaa57e4ecced2e7b456905dc5651853fd
SSDEEP

24576:WKyKz4D4ufmwhzA2QoPKCys7JdpmnMlxy9KR8uQcu9:WKVzMNuwIKyoBmnMSURNQd

Score

7^/10

Malware Config

Targets

- Target
  
  62d15963389ed4f34797a16e3783c9f42f89a81f72a9fe3c47c471c1e366ae60
- Size
  
  1.3MB
- MD5
  
  a5d8f05b6d7fc40c6b33c596f8ed7af3
- SHA1
  
  5b4f3f9daec6aaeef7bb7b94542dde445646be13
- SHA256
  
  62d15963389ed4f34797a16e3783c9f42f89a81f72a9fe3c47c471c1e366ae60
- SHA512
  
  74d5469abd7b0bfdf91f9b0421307ee7752abfe5465ce90df3e95aa587b657809a26f6ce4768a145a0fdb63cc1093e9eaa57e4ecced2e7b456905dc5651853fd
- SSDEEP
  
  24576:WKyKz4D4ufmwhzA2QoPKCys7JdpmnMlxy9KR8uQcu9:WKVzMNuwIKyoBmnMSURNQd
Score

7^/10
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2