381cce5d66e54b64845380f707b8336e0be9ffb400a9039409f435000c35a371 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

381cce5d66e54b64845380f707b8336e0be9ffb400a9039409f435000c35a371
Size

4.7MB
Sample

230310-ym477afb36
MD5

1426d1659b352b8f3a89c7977323636a
SHA1

4006b630a9bd15c05a4615aa1592a6a6df6900b2
SHA256

381cce5d66e54b64845380f707b8336e0be9ffb400a9039409f435000c35a371
SHA512

0e08701b821ffac9ad2232e3db3f3779409e0c3a35781567ef2c3eb8d61bd8ef4c20ee5702d82f50744311d18a3a107ff4b56a239e68ca3e9160a64f76b7a119
SSDEEP

98304:VrNDnifgPgjhcObmRCevTu6QDiU98WJONhZ9gsb0jJu/2vJYL4ooq:VFBMuOCTpDLaqiRYLT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  381cce5d66e54b64845380f707b8336e0be9ffb400a9039409f435000c35a371
- Size
  
  4.7MB
- MD5
  
  1426d1659b352b8f3a89c7977323636a
- SHA1
  
  4006b630a9bd15c05a4615aa1592a6a6df6900b2
- SHA256
  
  381cce5d66e54b64845380f707b8336e0be9ffb400a9039409f435000c35a371
- SHA512
  
  0e08701b821ffac9ad2232e3db3f3779409e0c3a35781567ef2c3eb8d61bd8ef4c20ee5702d82f50744311d18a3a107ff4b56a239e68ca3e9160a64f76b7a119
- SSDEEP
  
  98304:VrNDnifgPgjhcObmRCevTu6QDiU98WJONhZ9gsb0jJu/2vJYL4ooq:VFBMuOCTpDLaqiRYLT
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1