7e70412953b78c03412dbd33aa71e426534e0a715f07104c4298c82260a44a38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e70412953b78c03412dbd33aa71e426534e0a715f07104c4298c82260a44a38
Size

4.7MB
Sample

230315-fq5n1sbf45
MD5

9cd96e016464e8489693721f9fbcb114
SHA1

5fbfcfe080a2e69be0d4b7281bdf5a9f099b65b4
SHA256

7e70412953b78c03412dbd33aa71e426534e0a715f07104c4298c82260a44a38
SHA512

d0f170b182614f53acfed1128d782444ed288e5fdf84d4860c0ff6c57002d6129df04e07e0c4774b4f373226fa37ccf14fc3f56e346db283b5e8d7c4452655a1
SSDEEP

98304:SrNDnifgPgjhcObmRCevTu6QDiU98WJONhZ9gsb0jJu/2vJYL4ooq:SFBMuOCTpDLaqiRYLT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7e70412953b78c03412dbd33aa71e426534e0a715f07104c4298c82260a44a38
- Size
  
  4.7MB
- MD5
  
  9cd96e016464e8489693721f9fbcb114
- SHA1
  
  5fbfcfe080a2e69be0d4b7281bdf5a9f099b65b4
- SHA256
  
  7e70412953b78c03412dbd33aa71e426534e0a715f07104c4298c82260a44a38
- SHA512
  
  d0f170b182614f53acfed1128d782444ed288e5fdf84d4860c0ff6c57002d6129df04e07e0c4774b4f373226fa37ccf14fc3f56e346db283b5e8d7c4452655a1
- SSDEEP
  
  98304:SrNDnifgPgjhcObmRCevTu6QDiU98WJONhZ9gsb0jJu/2vJYL4ooq:SFBMuOCTpDLaqiRYLT
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2