c9224da21f842e0f3eefdde24bbe12c576ced858e37e4b03d8df23119c769ee7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9224da21f842e0f3eefdde24bbe12c576ced858e37e4b03d8df23119c769ee7
Size

8.0MB
Sample

240326-wkvjvsbb7z
MD5

1182adc71410b5f21ee13f744bfd1d7f
SHA1

4ef4f5ba4abcd5e929dbc26e86a505d970363760
SHA256

c9224da21f842e0f3eefdde24bbe12c576ced858e37e4b03d8df23119c769ee7
SHA512

86de3479aba5f41305346cd9249159c5ff07a6a29e37d4d727799bd6d6cd588d9f2f6b47ee78df976aad332d85a7e5c776b312a114b87927e85f9c873734be3c
SSDEEP

49152:CzHj63m8hZHzDrb/T7vO90d7HjmAFd4A64nsfJfWtp9DDE/mJMgmYPy8q5lr+yXG:C0HkunDEgyJoDcEro9qYjEc874dxE5LZ

Score

7^/10

Malware Config

Targets

- Target
  
  c9224da21f842e0f3eefdde24bbe12c576ced858e37e4b03d8df23119c769ee7
- Size
  
  8.0MB
- MD5
  
  1182adc71410b5f21ee13f744bfd1d7f
- SHA1
  
  4ef4f5ba4abcd5e929dbc26e86a505d970363760
- SHA256
  
  c9224da21f842e0f3eefdde24bbe12c576ced858e37e4b03d8df23119c769ee7
- SHA512
  
  86de3479aba5f41305346cd9249159c5ff07a6a29e37d4d727799bd6d6cd588d9f2f6b47ee78df976aad332d85a7e5c776b312a114b87927e85f9c873734be3c
- SSDEEP
  
  49152:CzHj63m8hZHzDrb/T7vO90d7HjmAFd4A64nsfJfWtp9DDE/mJMgmYPy8q5lr+yXG:C0HkunDEgyJoDcEro9qYjEc874dxE5LZ
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2