a12c63a33382720b5ce010cc050106c3909316477b956ca8c17f4a1f6ca6aa42 | Triage

Resubmissions

22-09-2023 04:27

230922-e2589aeh48 6

22-09-2023 04:17

230922-ewnr1sch3x 10

Sharing

General

Target

a12c63a33382720b5ce010cc050106c3909316477b956ca8c17f4a1f6ca6aa42
Size

239KB
Sample

230922-e2589aeh48
MD5

3240f8928a130bb155571570c563200a
SHA1

aa621ddde551f7e0dbeed157ab1eac3f1906f493
SHA256

a12c63a33382720b5ce010cc050106c3909316477b956ca8c17f4a1f6ca6aa42
SHA512

e7c357e54b7768f1a66e0dabe2c604afe3765eb858f8b4e5751659a4b373b10fb6cc1dc72641aabf83e34d097f28fa70a78482310ecd93e9aa0347378bde409b
SSDEEP

6144:dMcz8EQnRrxT5t9kFIndDK4lY4xohYA1au77C0G:dM7XnPz9uIgGLxoSA06

Score

6^/10

Malware Config

Targets

- Target
  
  a12c63a33382720b5ce010cc050106c3909316477b956ca8c17f4a1f6ca6aa42
- Size
  
  239KB
- MD5
  
  3240f8928a130bb155571570c563200a
- SHA1
  
  aa621ddde551f7e0dbeed157ab1eac3f1906f493
- SHA256
  
  a12c63a33382720b5ce010cc050106c3909316477b956ca8c17f4a1f6ca6aa42
- SHA512
  
  e7c357e54b7768f1a66e0dabe2c604afe3765eb858f8b4e5751659a4b373b10fb6cc1dc72641aabf83e34d097f28fa70a78482310ecd93e9aa0347378bde409b
- SSDEEP
  
  6144:dMcz8EQnRrxT5t9kFIndDK4lY4xohYA1au77C0G:dM7XnPz9uIgGLxoSA06
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2