97210440e3720d4c3799b4749e45c4fb4d9fbc02e2ce4d6533a13f52e27fbf2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

97210440e3720d4c3799b4749e45c4fb4d9fbc02e2ce4d6533a13f52e27fbf2c
Size

36KB
Sample

221205-zylqnaga32
MD5

c5e3c167e898be6ed20c395c38af3541
SHA1

ebf2444db5799423ec28fdbd10962a692be04faa
SHA256

97210440e3720d4c3799b4749e45c4fb4d9fbc02e2ce4d6533a13f52e27fbf2c
SHA512

6935314d8ff747fd9b635cd9918d2d550d14d6defeeebd550ab9ffb903d44f4674c0acaefe387f5c20b683170fb5c28ff676bc9d3c7847fa2dae2df249ee1ec3
SSDEEP

768:T8mYzyN7c9SKiGsU8fKKVuJvS7lNyHg95fppe:GGN7c9SKiGN8fzdlNyHm5q

Score

8^/10

Malware Config

Targets

- Target
  
  97210440e3720d4c3799b4749e45c4fb4d9fbc02e2ce4d6533a13f52e27fbf2c
- Size
  
  36KB
- MD5
  
  c5e3c167e898be6ed20c395c38af3541
- SHA1
  
  ebf2444db5799423ec28fdbd10962a692be04faa
- SHA256
  
  97210440e3720d4c3799b4749e45c4fb4d9fbc02e2ce4d6533a13f52e27fbf2c
- SHA512
  
  6935314d8ff747fd9b635cd9918d2d550d14d6defeeebd550ab9ffb903d44f4674c0acaefe387f5c20b683170fb5c28ff676bc9d3c7847fa2dae2df249ee1ec3
- SSDEEP
  
  768:T8mYzyN7c9SKiGsU8fKKVuJvS7lNyHg95fppe:GGN7c9SKiGN8fzdlNyHm5q
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2