3f1709224c113a36e8b3a7d4bb24b9ec35b762d94a8218f8f4c0b82c9ed51cbb | Triage

Sharing

General

Target

3f1709224c113a36e8b3a7d4bb24b9ec35b762d94a8218f8f4c0b82c9ed51cbb
Size

9.2MB
Sample

221127-sj7k9afg84
MD5

3685bf179182825f79569a5ed730f586
SHA1

db87834bd9183183085e2ec1880729a07b88059e
SHA256

3f1709224c113a36e8b3a7d4bb24b9ec35b762d94a8218f8f4c0b82c9ed51cbb
SHA512

e5fccab9d05abe8f6838f582bc5326af15c9c12353a9062c47d85f6b76b2ee24e195154c1dbe622919a92414ddb933af16f3436d42575a6e892aa39d3f0150a3
SSDEEP

196608:sVOMAQtJHQbegJtU6ZPYW251neAjnqjIxycT7B:kASQyRwYW239nqjMlV

Score

5^/10

Malware Config

Targets

- Target
  
  3f1709224c113a36e8b3a7d4bb24b9ec35b762d94a8218f8f4c0b82c9ed51cbb
- Size
  
  9.2MB
- MD5
  
  3685bf179182825f79569a5ed730f586
- SHA1
  
  db87834bd9183183085e2ec1880729a07b88059e
- SHA256
  
  3f1709224c113a36e8b3a7d4bb24b9ec35b762d94a8218f8f4c0b82c9ed51cbb
- SHA512
  
  e5fccab9d05abe8f6838f582bc5326af15c9c12353a9062c47d85f6b76b2ee24e195154c1dbe622919a92414ddb933af16f3436d42575a6e892aa39d3f0150a3
- SSDEEP
  
  196608:sVOMAQtJHQbegJtU6ZPYW251neAjnqjIxycT7B:kASQyRwYW239nqjMlV
Score

5^/10
- Drops file in System32 directory
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2