8c7bf86c2e3d4cad427dc425ca483b798041da05ee78b7b12059788ffc6ab22e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c7bf86c2e3d4cad427dc425ca483b798041da05ee78b7b12059788ffc6ab22e
Size

4.6MB
Sample

230311-q3wa8ahg52
MD5

035ebdec3ebffd95ca9c36a62c1bc24f
SHA1

24438e9a0f0d2ea210b143e3094d18ac63d804f5
SHA256

8c7bf86c2e3d4cad427dc425ca483b798041da05ee78b7b12059788ffc6ab22e
SHA512

1579d03ed72c482cf18985bd3eef57d24acc4fb8c3456ffbe9a7dcd0f0b944132da5e22176e43c483a38e86f164d82d0e5fb5df45d79b76763f1171dd8aabbf3
SSDEEP

98304:eFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrb:eFRPQzceZHOc3RxAwZG/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8c7bf86c2e3d4cad427dc425ca483b798041da05ee78b7b12059788ffc6ab22e
- Size
  
  4.6MB
- MD5
  
  035ebdec3ebffd95ca9c36a62c1bc24f
- SHA1
  
  24438e9a0f0d2ea210b143e3094d18ac63d804f5
- SHA256
  
  8c7bf86c2e3d4cad427dc425ca483b798041da05ee78b7b12059788ffc6ab22e
- SHA512
  
  1579d03ed72c482cf18985bd3eef57d24acc4fb8c3456ffbe9a7dcd0f0b944132da5e22176e43c483a38e86f164d82d0e5fb5df45d79b76763f1171dd8aabbf3
- SSDEEP
  
  98304:eFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrb:eFRPQzceZHOc3RxAwZG/
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1