d3e71a337d58b6ae1f49be4a5d89258ce11dc33b86c0a6f3ca93c16170dc500c | Triage

Sharing

General

Target

PO TKHA-A8816001.exe
Size

782KB
Sample

231107-rneklaha2y
MD5

0a714b10c9d1770ba23576cefd65a0f9
SHA1

8d74d1d2ffd443fd6cee3078ffab3411305d5cf7
SHA256

d3e71a337d58b6ae1f49be4a5d89258ce11dc33b86c0a6f3ca93c16170dc500c
SHA512

dc21b5d87498b8b486d69cd4742d092e95a2b68ca03c5e7533520001f3f3695fa0ca4a117fe0f944e9bb14ca4342d5cd9ad4f5570a145eeb91738a64dc3216cb
SSDEEP

12288:GVpBxh4EA1+URy4OD1LtG3vXiB5lFET2XYwjtBbJWx+eyt7qMnFPzi31sbIdkMB6:aw9nOh4vSs8Yszu+5tfPziFsbYkMB6

Score

5^/10

Malware Config

Targets

- Target
  
  PO TKHA-A8816001.exe
- Size
  
  782KB
- MD5
  
  0a714b10c9d1770ba23576cefd65a0f9
- SHA1
  
  8d74d1d2ffd443fd6cee3078ffab3411305d5cf7
- SHA256
  
  d3e71a337d58b6ae1f49be4a5d89258ce11dc33b86c0a6f3ca93c16170dc500c
- SHA512
  
  dc21b5d87498b8b486d69cd4742d092e95a2b68ca03c5e7533520001f3f3695fa0ca4a117fe0f944e9bb14ca4342d5cd9ad4f5570a145eeb91738a64dc3216cb
- SSDEEP
  
  12288:GVpBxh4EA1+URy4OD1LtG3vXiB5lFET2XYwjtBbJWx+eyt7qMnFPzi31sbIdkMB6:aw9nOh4vSs8Yszu+5tfPziFsbYkMB6
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2