65a17c49f0fd9eb68ca6f0093ba7ea238f6f03ef7eddbbe050cb2d689f7a6abc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65a17c49f0fd9eb68ca6f0093ba7ea238f6f03ef7eddbbe050cb2d689f7a6abc
Size

703KB
Sample

231030-g9dv3sbd2z
MD5

943ab245703499f6acc1f2545d9c3ac0
SHA1

33766cf9cd017d12d083b4eb60be1868d2dc6afb
SHA256

65a17c49f0fd9eb68ca6f0093ba7ea238f6f03ef7eddbbe050cb2d689f7a6abc
SHA512

6da22d02aa669cc636ffca3d53623b560fbec5514b43407e1f733d80ffa0699558aaecddc5a5236220773e38bea91b73216f63c0bd8ad19dbe3452a06c091959
SSDEEP

12288:P+U+qXXv1E/a7XkCeVzdsly2dd0oGvlFd1XJoo4ey3GkwYiconW1Kkgm213jEB:P+ToXvjgJx7Hl1CX3GkwYitnYpgNE

Score

7^/10

Malware Config

Targets

- Target
  
  Document_File_Account.exe
- Size
  
  901KB
- MD5
  
  32fffd3ae9d622e65d3eb3f133499582
- SHA1
  
  b46eb24e29e17e1c900d356bacd5404797a86d25
- SHA256
  
  ef4cfc26c8e8bff8944ac18e7202bfa7cba32fc8c65382f33bea823864e2de13
- SHA512
  
  a76d4a8ad2b5c43df0cbbe90c2b4827181bbb504c75e5a820db8624e7a22870d7571c0be136db3ba211183a3914ec9a3b4f9f36ff0bda85f8da79b3b56936237
- SSDEEP
  
  12288:8zA/E1a7XmCeYdNN2sndwW5wYYcUnW/+kgmVDiDMDr+:80v7dHGW5wYYrngVgoD3D
Score

7^/10
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2