473205055776d3c4a9526ce7be852cbfbeffe9fd0a9c127011f869b571df6318 | Triage

Sharing

General

Target

473205055776d3c4a9526ce7be852cbfbeffe9fd0a9c127011f869b571df6318
Size

4.6MB
Sample

230314-ff89fsdd39
MD5

b5c320b3d2f4c382b97ccf8c36fda08d
SHA1

14f74a9160dccefd94a41c95425a709092236dbf
SHA256

473205055776d3c4a9526ce7be852cbfbeffe9fd0a9c127011f869b571df6318
SHA512

e7acb8917eaf709aea7a23728660cc653ee96f4375fdf2130a42916bd1157cc7d13ea8870b66f889eb0c2885c313b99877ddac3edc7cc63f5c3ec355df2af7b7
SSDEEP

98304:kFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrJ:kFRPQzceZHOc3RxAwZGV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  473205055776d3c4a9526ce7be852cbfbeffe9fd0a9c127011f869b571df6318
- Size
  
  4.6MB
- MD5
  
  b5c320b3d2f4c382b97ccf8c36fda08d
- SHA1
  
  14f74a9160dccefd94a41c95425a709092236dbf
- SHA256
  
  473205055776d3c4a9526ce7be852cbfbeffe9fd0a9c127011f869b571df6318
- SHA512
  
  e7acb8917eaf709aea7a23728660cc653ee96f4375fdf2130a42916bd1157cc7d13ea8870b66f889eb0c2885c313b99877ddac3edc7cc63f5c3ec355df2af7b7
- SSDEEP
  
  98304:kFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrJ:kFRPQzceZHOc3RxAwZGV
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2