e01a65ad3e9e1c2aeba28fa973fec47803b00335165a69d59b692a0534ad25ce | Triage

Sharing

General

Target

Ziraat-bankasi=SwiftMessaji00021122022.exe
Size

708KB
Sample

221221-wdfgcscg49
MD5

fde681ae9a417955904539aa4a49993b
SHA1

2e80592f1a6d661ce1ed038794c2012eace9eef5
SHA256

e01a65ad3e9e1c2aeba28fa973fec47803b00335165a69d59b692a0534ad25ce
SHA512

7a3987c5b6487ad231eaf48109f1883ca46ff69bd2e813d38cdc1571c5a2381c05c1db22e48b95bf3794054204c217164d3a5ecf4427a0a5c238082531cc1ef5
SSDEEP

12288:E9TGDGC2mPvaJAz3hLyxnoP4biHD1iz+6Evw+28/UueHiJWlSiCiI:6aGkRJ1iEdeHCWlL

Score

7^/10

Malware Config

Targets

- Target
  
  Ziraat-bankasi=SwiftMessaji00021122022.exe
- Size
  
  708KB
- MD5
  
  fde681ae9a417955904539aa4a49993b
- SHA1
  
  2e80592f1a6d661ce1ed038794c2012eace9eef5
- SHA256
  
  e01a65ad3e9e1c2aeba28fa973fec47803b00335165a69d59b692a0534ad25ce
- SHA512
  
  7a3987c5b6487ad231eaf48109f1883ca46ff69bd2e813d38cdc1571c5a2381c05c1db22e48b95bf3794054204c217164d3a5ecf4427a0a5c238082531cc1ef5
- SSDEEP
  
  12288:E9TGDGC2mPvaJAz3hLyxnoP4biHD1iz+6Evw+28/UueHiJWlSiCiI:6aGkRJ1iEdeHCWlL
Score

7^/10
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2