48538dea30f2042edcae98127b9e163f4f0d6a56aec15625d8bd2dae5ba8ac35 | Triage

Sharing

General

Target

48538dea30f2042edcae98127b9e163f4f0d6a56aec15625d8bd2dae5ba8ac35
Size

4.2MB
Sample

230306-rvavzscg63
MD5

35f181ee49ec409d056cca073b71fdae
SHA1

c03b476e3ebea8c806149072963125c032f5016a
SHA256

48538dea30f2042edcae98127b9e163f4f0d6a56aec15625d8bd2dae5ba8ac35
SHA512

7dafc8c67971f1e49004566f815ca85553562317b7a661dcca0eb4d8cdcb08347ee21799242a79b8c1afa89700dd12f5621281971615e5937762538771737219
SSDEEP

98304:3pEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthQ:ZRG4sskf38s7MjJeVYT69id+VbaM8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  48538dea30f2042edcae98127b9e163f4f0d6a56aec15625d8bd2dae5ba8ac35
- Size
  
  4.2MB
- MD5
  
  35f181ee49ec409d056cca073b71fdae
- SHA1
  
  c03b476e3ebea8c806149072963125c032f5016a
- SHA256
  
  48538dea30f2042edcae98127b9e163f4f0d6a56aec15625d8bd2dae5ba8ac35
- SHA512
  
  7dafc8c67971f1e49004566f815ca85553562317b7a661dcca0eb4d8cdcb08347ee21799242a79b8c1afa89700dd12f5621281971615e5937762538771737219
- SSDEEP
  
  98304:3pEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthQ:ZRG4sskf38s7MjJeVYT69id+VbaM8
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1