cd7fa0e585fcc126483caa9f5c738d0c213e3326f132e47c69d942eeb9ef1345 | Triage

Sharing

General

Target

Proteggiti12.exe
Size

81KB
Sample

230319-by1mtaed42
MD5

bcf010a0ac126b82c429d6b1e05e0904
SHA1

d59494cc6a114951c9affc0d280d39f7ee429412
SHA256

cd7fa0e585fcc126483caa9f5c738d0c213e3326f132e47c69d942eeb9ef1345
SHA512

50620b0f7149eb0244a640df1d8334657fd34b26f3a6ebaeb8dd892f68560a9b273cd95310d034003b163a1aa198499a74695ed6650069a08d2ab5f71c3e18d5
SSDEEP

1536:/s3y2R2T619NzucB2VJtLE933X80VMYEwduOrIDxBHCs0h:6qTE3zucB2Vg38jfwMOa3Cxh

Score

7^/10

Malware Config

Targets

- Target
  
  Proteggiti12.exe
- Size
  
  81KB
- MD5
  
  bcf010a0ac126b82c429d6b1e05e0904
- SHA1
  
  d59494cc6a114951c9affc0d280d39f7ee429412
- SHA256
  
  cd7fa0e585fcc126483caa9f5c738d0c213e3326f132e47c69d942eeb9ef1345
- SHA512
  
  50620b0f7149eb0244a640df1d8334657fd34b26f3a6ebaeb8dd892f68560a9b273cd95310d034003b163a1aa198499a74695ed6650069a08d2ab5f71c3e18d5
- SSDEEP
  
  1536:/s3y2R2T619NzucB2VJtLE933X80VMYEwduOrIDxBHCs0h:6qTE3zucB2Vg38jfwMOa3Cxh
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2