ad3710f487faa109f7b2c0fdbfd289fff9cb2a901ef0bafd0aa66d1c8abaa0d1 | Triage

Sharing

General

Target

ad3710f487faa109f7b2c0fdbfd289fff9cb2a901ef0bafd0aa66d1c8abaa0d1
Size

1.5MB
Sample

221128-e6xsnsba2z
MD5

34adeb41fc41582105d044e80b36594c
SHA1

79549f7bb2097ae24c06e4b3266b06af852fb32c
SHA256

ad3710f487faa109f7b2c0fdbfd289fff9cb2a901ef0bafd0aa66d1c8abaa0d1
SHA512

2ab2930f5a84e9c39e5ddb375f75baaec773fc931c9c6bcefc295a1b26675a659d93d66059402b13d8e919c2873a87dee77f06c3874ba358cec3a298d3ff1112
SSDEEP

24576:i5IM/V0deM5lZ2ykPYMkrQ1OrWaRyv2PBcSL+L5/+FMoQl/ugQWiBdrfO+a+1:IIBfvMkrNrf0u3qdaNLgQWiO+V

Score

5^/10

Malware Config

Targets

- Target
  
  ad3710f487faa109f7b2c0fdbfd289fff9cb2a901ef0bafd0aa66d1c8abaa0d1
- Size
  
  1.5MB
- MD5
  
  34adeb41fc41582105d044e80b36594c
- SHA1
  
  79549f7bb2097ae24c06e4b3266b06af852fb32c
- SHA256
  
  ad3710f487faa109f7b2c0fdbfd289fff9cb2a901ef0bafd0aa66d1c8abaa0d1
- SHA512
  
  2ab2930f5a84e9c39e5ddb375f75baaec773fc931c9c6bcefc295a1b26675a659d93d66059402b13d8e919c2873a87dee77f06c3874ba358cec3a298d3ff1112
- SSDEEP
  
  24576:i5IM/V0deM5lZ2ykPYMkrQ1OrWaRyv2PBcSL+L5/+FMoQl/ugQWiBdrfO+a+1:IIBfvMkrNrf0u3qdaNLgQWiO+V
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2