28cdd847e14a16f391343bde74609cec6163e2c7f307f1d280ee0583a407f2cd | Triage

Submit
Reports

Overview

overview

7

Static

static

1

Documents ...OC.exe

windows7-x64

7

Documents ...OC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

28CDD847E14A16F391343BDE74609CEC6163E2C7F307F1D280EE0583A407F2CD
Size

1.2MB
Sample

230314-rvx1hsfh89
MD5

f6aa9e49abd3c26bc6689a87819b3cd3
SHA1

9bbb89268228855bc5cde19c456a92b0d5acfe15
SHA256

28cdd847e14a16f391343bde74609cec6163e2c7f307f1d280ee0583a407f2cd
SHA512

49695902b45d50b0c3069a46e728fc22c69f073a1120d6ce56eacd507975720e6a23f4f42960739ed089ce8063e9aac28efadb34cd4f4760acf9fde10c5c57ea
SSDEEP

24576:1Z3wucoNMwGQ63yvTTR3Hya8FGWsBINsvF4SEjCVo/WCatc1RcLddeEwHDeYu8:1BgoWBQoyvTTR3z8FG33jWCVxXtf6ED0

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

Documents Remittance Form09052622LOC.exe

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Documents Remittance Form09052622LOC.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  Documents Remittance Form09052622LOC.exe
- Size
  
  1.2MB
- MD5
  
  81b121360259be83afb5e2a436aeb9fb
- SHA1
  
  5293985bce1cd70c745e679fd2d94fe46c1fb7ef
- SHA256
  
  736cdfa77da078df62e75cff8e957d57b4b64063cbead7db951fa3bd98b2013c
- SHA512
  
  4ce96fdfe59a5c515152bf72ceaefc8c534dfba8222dfc92347c0b3089b3df01eceecf23d7cb49bc92d9b136a9b7e07d22436a5ba15568453c5d8aa4b4c7a7f7
- SSDEEP
  
  24576:/YgQ72qS4NMK2QY3upXFn3vyW8FGWi1cNsvHGO0fCRG5WAuR6RRyLBbqESHDAY9H:A/646jQqupXFn/p8FGnlNKCRjjR14E74
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy