ed61af8396ea9cbf15a46397c24bc5420e6640df7e1b4e0b92ffe6008d87df50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed61af8396ea9cbf15a46397c24bc5420e6640df7e1b4e0b92ffe6008d87df50
Size

180KB
Sample

221127-rwj52shf8x
MD5

31ce3d6d194e6c079b19bf9c7b8debf2
SHA1

54e8d2f79114cdecce16b7468888b5d853e052e5
SHA256

ed61af8396ea9cbf15a46397c24bc5420e6640df7e1b4e0b92ffe6008d87df50
SHA512

7062193615a9f7f0ad6a57e3db83c74f2ae375e7b8af1ef1bc192b4806a5acac3f14cf8d22f5d92d2473d75e31f3a7e34680a3c6827aad72b9b1e2fceda27818
SSDEEP

3072:TAc+97pdNllqB9vt5JXo1kdXiWTkmx+bfOl28U3XH/hCErAvpjPeAEqnO:Uc+ZpzlgB9vXpx9TkmxSm08UH/hhrOpL

Score

5^/10

Malware Config

Targets

- Target
  
  ed61af8396ea9cbf15a46397c24bc5420e6640df7e1b4e0b92ffe6008d87df50
- Size
  
  180KB
- MD5
  
  31ce3d6d194e6c079b19bf9c7b8debf2
- SHA1
  
  54e8d2f79114cdecce16b7468888b5d853e052e5
- SHA256
  
  ed61af8396ea9cbf15a46397c24bc5420e6640df7e1b4e0b92ffe6008d87df50
- SHA512
  
  7062193615a9f7f0ad6a57e3db83c74f2ae375e7b8af1ef1bc192b4806a5acac3f14cf8d22f5d92d2473d75e31f3a7e34680a3c6827aad72b9b1e2fceda27818
- SSDEEP
  
  3072:TAc+97pdNllqB9vt5JXo1kdXiWTkmx+bfOl28U3XH/hCErAvpjPeAEqnO:Uc+ZpzlgB9vXpx9TkmxSm08UH/hhrOpL
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2