ddda56a2d639f7a87c60ae2f423da034be4e633c111a763792800fb076a6bad9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddda56a2d639f7a87c60ae2f423da034be4e633c111a763792800fb076a6bad9
Size

4.2MB
Sample

230305-yv7y2sgg6x
MD5

1e2c86af050c0f95decddff4487a1bac
SHA1

1a8eae6891c0c62fb8cc940b22f0db9a2f480cd2
SHA256

ddda56a2d639f7a87c60ae2f423da034be4e633c111a763792800fb076a6bad9
SHA512

7fd2f9fed6280cb226a3f36262af934d377c963ec37ac13695359ae6e4c76366cbf4ff6c9347cb95f935cb03c3f6fd77453e31931f1989fbc52cfb28c0d9f046
SSDEEP

98304:MVEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:YRG4sskf38s7MjJeVYT69id+VbaMc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ddda56a2d639f7a87c60ae2f423da034be4e633c111a763792800fb076a6bad9
- Size
  
  4.2MB
- MD5
  
  1e2c86af050c0f95decddff4487a1bac
- SHA1
  
  1a8eae6891c0c62fb8cc940b22f0db9a2f480cd2
- SHA256
  
  ddda56a2d639f7a87c60ae2f423da034be4e633c111a763792800fb076a6bad9
- SHA512
  
  7fd2f9fed6280cb226a3f36262af934d377c963ec37ac13695359ae6e4c76366cbf4ff6c9347cb95f935cb03c3f6fd77453e31931f1989fbc52cfb28c0d9f046
- SSDEEP
  
  98304:MVEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:YRG4sskf38s7MjJeVYT69id+VbaMc
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1