ca9894f88be8f06524a09209c1020abbb42bb4d193757ef8ba1aa3abed02aceb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

treppe.dll
Size

1.3MB
Sample

230316-rq4bqsbb78
MD5

7a1084a531c896148a2aa1f4a5f2740f
SHA1

c15c2ad7d20daa26c06e113aab69fc20b8c95ee5
SHA256

ca9894f88be8f06524a09209c1020abbb42bb4d193757ef8ba1aa3abed02aceb
SHA512

9d206e13051128ebae9292384ea434b76fa40df4ba08310169be6c396f406f9c3921e4e8328011efa06eb78472cada8493e889a863274322e37b2fbc4e6b4fc7
SSDEEP

12288:zNfg7ayYgZHRXnW0liwD8L9GlB/TSJRBzfVE/+AqD0eBkvkJl6h4MEFvhAkRoAG5:zRTyV2ZxybQvh9RoOUzux82V8P

Score

5^/10

Malware Config

Targets

- Target
  
  treppe.dll
- Size
  
  1.3MB
- MD5
  
  7a1084a531c896148a2aa1f4a5f2740f
- SHA1
  
  c15c2ad7d20daa26c06e113aab69fc20b8c95ee5
- SHA256
  
  ca9894f88be8f06524a09209c1020abbb42bb4d193757ef8ba1aa3abed02aceb
- SHA512
  
  9d206e13051128ebae9292384ea434b76fa40df4ba08310169be6c396f406f9c3921e4e8328011efa06eb78472cada8493e889a863274322e37b2fbc4e6b4fc7
- SSDEEP
  
  12288:zNfg7ayYgZHRXnW0liwD8L9GlB/TSJRBzfVE/+AqD0eBkvkJl6h4MEFvhAkRoAG5:zRTyV2ZxybQvh9RoOUzux82V8P
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2