6a196fd4716a6bef6f3d1676e47fcf513b34dcc12d99110bb6af4aacb7e15fff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

_JsGubwe.exe
Size

6.3MB
Sample

230720-ydrwhaah3x
MD5

feb1699f3aec555fd048094faa94d7ed
SHA1

3ed36237b2f2d37dc5351844f18dccf249fd7a0a
SHA256

6a196fd4716a6bef6f3d1676e47fcf513b34dcc12d99110bb6af4aacb7e15fff
SHA512

6fcbfcbd2c9198b9d71b67bd12d22a746004ce6ed183b7e747bf8c4a2ba0ff2aa8476ff4c8f1945c81a8af1107c4f30072126fee067f37bd06cc60fa458012c0
SSDEEP

49152:cZsP5NHARSx1CS6+MFjCq3Dz5Xn4BWKJtb9a4PRyeAuNIdxEBkc6KDBr7e3Fre/g:G

Score

5^/10

Malware Config

Targets

- Target
  
  _JsGubwe.exe
- Size
  
  6.3MB
- MD5
  
  feb1699f3aec555fd048094faa94d7ed
- SHA1
  
  3ed36237b2f2d37dc5351844f18dccf249fd7a0a
- SHA256
  
  6a196fd4716a6bef6f3d1676e47fcf513b34dcc12d99110bb6af4aacb7e15fff
- SHA512
  
  6fcbfcbd2c9198b9d71b67bd12d22a746004ce6ed183b7e747bf8c4a2ba0ff2aa8476ff4c8f1945c81a8af1107c4f30072126fee067f37bd06cc60fa458012c0
- SSDEEP
  
  49152:cZsP5NHARSx1CS6+MFjCq3Dz5Xn4BWKJtb9a4PRyeAuNIdxEBkc6KDBr7e3Fre/g:G
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2