f67397efbe737544ecc40af40d938c6635277220d48836ce0617b2dc9bba2960 | Triage

Sharing

General

Target

f67397efbe737544ecc40af40d938c6635277220d48836ce0617b2dc9bba2960
Size

4.6MB
Sample

230311-qzr5dsbf3y
MD5

3b03fce4671df646496d75488d16eaf8
SHA1

13b8b37d36c5c3114718e20f96daef0d3575c5fa
SHA256

f67397efbe737544ecc40af40d938c6635277220d48836ce0617b2dc9bba2960
SHA512

8e279ba83f9547cc083fb965a9027428c6a977a34449cccd6f7971b6b95cbffe729ba1ba6fad681a6f5eb70324826746fc82edbe5ec37d7f7317a121d83e5b5b
SSDEEP

98304:eFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrb:eFRPQzceZHOc3RxAwZG/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f67397efbe737544ecc40af40d938c6635277220d48836ce0617b2dc9bba2960
- Size
  
  4.6MB
- MD5
  
  3b03fce4671df646496d75488d16eaf8
- SHA1
  
  13b8b37d36c5c3114718e20f96daef0d3575c5fa
- SHA256
  
  f67397efbe737544ecc40af40d938c6635277220d48836ce0617b2dc9bba2960
- SHA512
  
  8e279ba83f9547cc083fb965a9027428c6a977a34449cccd6f7971b6b95cbffe729ba1ba6fad681a6f5eb70324826746fc82edbe5ec37d7f7317a121d83e5b5b
- SSDEEP
  
  98304:eFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrb:eFRPQzceZHOc3RxAwZG/
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1