1c7c4264e5c68c0fb91636d466b42e6cfb4398dbeaffad584372935e15e82fe6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c7c4264e5c68c0fb91636d466b42e6cfb4398dbeaffad584372935e15e82fe6
Size

4.6MB
Sample

230312-pngc3sdg79
MD5

6730f8c0960fc4eca7a8521f0a269d99
SHA1

2c0629b9c9c1c0b978560631036973185ed8beb1
SHA256

1c7c4264e5c68c0fb91636d466b42e6cfb4398dbeaffad584372935e15e82fe6
SHA512

fd04e2d1ec708354608eb5bfe53dc82c3f3ace7d11968fc941b0a25adab684f530378b0142f87f1703860aeaf09ef679735fccd812fd780610c575b634bcc667
SSDEEP

49152:1C71N0xewXOBD4GaacfSG0K4ubh1992ZccWWF6ybP5XVvdDbNtOL4cCZtey+4t4F:2ojKDtNkS8CRNdDJLcwZ+419RlmItbD+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1c7c4264e5c68c0fb91636d466b42e6cfb4398dbeaffad584372935e15e82fe6
- Size
  
  4.6MB
- MD5
  
  6730f8c0960fc4eca7a8521f0a269d99
- SHA1
  
  2c0629b9c9c1c0b978560631036973185ed8beb1
- SHA256
  
  1c7c4264e5c68c0fb91636d466b42e6cfb4398dbeaffad584372935e15e82fe6
- SHA512
  
  fd04e2d1ec708354608eb5bfe53dc82c3f3ace7d11968fc941b0a25adab684f530378b0142f87f1703860aeaf09ef679735fccd812fd780610c575b634bcc667
- SSDEEP
  
  49152:1C71N0xewXOBD4GaacfSG0K4ubh1992ZccWWF6ybP5XVvdDbNtOL4cCZtey+4t4F:2ojKDtNkS8CRNdDJLcwZ+419RlmItbD+
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1