576ef869c72f3afe6f4f5101f27aeb0d479cae8e5d348eea4e43e8af8252dfd0 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

win.exe

windows7-x64

5

win.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

win.exe
Size

213KB
Sample

230711-jtj39sfd24
MD5

c0e88be9b83acf26d8269f07fe927f5c
SHA1

6f35b6b10fbf777d61df5c195fa6bf79251683e6
SHA256

576ef869c72f3afe6f4f5101f27aeb0d479cae8e5d348eea4e43e8af8252dfd0
SHA512

2b98bd74ff21c0e5aeaa6f8939c6e3b273c6ce864e85a58e660f15ec07daf5aea225dc56b56ccd46998c67f9b95550001297a5b0492775f7cc938e4ba4eb4118
SSDEEP

6144:t9oWWDUY7ddgXEDnSKiGw4HjYUduMkIdDSKf+m7AJ0H7:t9oWg7d+XEDnSKin4UAuHIdDVf9vH7

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

win.exe

Resource

win7-20230705-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

win.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  win.exe
- Size
  
  213KB
- MD5
  
  c0e88be9b83acf26d8269f07fe927f5c
- SHA1
  
  6f35b6b10fbf777d61df5c195fa6bf79251683e6
- SHA256
  
  576ef869c72f3afe6f4f5101f27aeb0d479cae8e5d348eea4e43e8af8252dfd0
- SHA512
  
  2b98bd74ff21c0e5aeaa6f8939c6e3b273c6ce864e85a58e660f15ec07daf5aea225dc56b56ccd46998c67f9b95550001297a5b0492775f7cc938e4ba4eb4118
- SSDEEP
  
  6144:t9oWWDUY7ddgXEDnSKiGw4HjYUduMkIdDSKf+m7AJ0H7:t9oWg7d+XEDnSKin4UAuHIdDVf9vH7
Score

7^/10
- Uses the VBS compiler for execution
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy