d3fa37e36ae83551b2ec8caea3973be7f981e2fcbc5169ef6d997e35f39df87e | Triage

Sharing

General

Target

d3fa37e36ae83551b2ec8caea3973be7f981e2fcbc5169ef6d997e35f39df87e
Size

4.2MB
Sample

230305-11gedshf44
MD5

bba4aaa1d75b95b06d60a5b7cd301dfe
SHA1

1d7ce42555b4d1ba5ae2cbc75f2dc79ffbdd1d6a
SHA256

d3fa37e36ae83551b2ec8caea3973be7f981e2fcbc5169ef6d997e35f39df87e
SHA512

3d901022777a0098cb81d179c48434b6f3fa4bf87df82543ca059262d79b087feeadc6ac7c8e99e40d71cf6ae9ccaa39b45e9c6afee90b88885294d61658fbba
SSDEEP

98304:dxEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:7RG4sskf38s7MjJeVYT69id+VbaMc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d3fa37e36ae83551b2ec8caea3973be7f981e2fcbc5169ef6d997e35f39df87e
- Size
  
  4.2MB
- MD5
  
  bba4aaa1d75b95b06d60a5b7cd301dfe
- SHA1
  
  1d7ce42555b4d1ba5ae2cbc75f2dc79ffbdd1d6a
- SHA256
  
  d3fa37e36ae83551b2ec8caea3973be7f981e2fcbc5169ef6d997e35f39df87e
- SHA512
  
  3d901022777a0098cb81d179c48434b6f3fa4bf87df82543ca059262d79b087feeadc6ac7c8e99e40d71cf6ae9ccaa39b45e9c6afee90b88885294d61658fbba
- SSDEEP
  
  98304:dxEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:7RG4sskf38s7MjJeVYT69id+VbaMc
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1