506b8d3ca2629df81c4b6cc48d0161b49c7ac15109dde4bf1217e5043f338ea9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Maple_1.96.zip
Size

1.7MB
Sample

240326-zm43vsca66
MD5

f5acfa7287c40119558c81ff4822d6a0
SHA1

258ba6f31b22e950388d6706efde10942ba2aff6
SHA256

506b8d3ca2629df81c4b6cc48d0161b49c7ac15109dde4bf1217e5043f338ea9
SHA512

cc7ed883b011240a09a92c05a11c22c4582a49ce4bc6fd9309116fe43c671d4ef95782be676ff8af287d2fd50b7ad57cbdba0edb5dc13b2d6e39287af69834c8
SSDEEP

49152:R43se372ndwuz53jSraaC2B7sYrJ5Y0vyrT:RB4GJzFjSeagYrPYuCT

Score

5^/10

Malware Config

Targets

- Target
  
  Maple 1.96/Maple.exe
- Size
  
  374KB
- MD5
  
  37d3cd2d4434a5932031ddfd774322ed
- SHA1
  
  ccce0607e7482378134c54f000b86449e64d30fe
- SHA256
  
  d1cbad9b9468f08c934deef4e82a108f8d04b2b824d0bdf1ffed353e6191a6be
- SHA512
  
  a48cb0f0d77637ffa1e1c0399144de288a33fc5b119ce822361557d991abfb207868e90a631d8fb6ffc4a4a54aa3a6c6df6e03e90f5305275b31f2feb1795f40
- SSDEEP
  
  6144:HUG7OvX5iAc5aSRJWBwRT6fYzutAjNQ9M4vaqf8Sc5Ktgmz7k/:0GSvo5akJmOT53Q94Y8SXz7k/
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2
- Target
  
  Maple 1.96/inject.dll
- Size
  
  710KB
- MD5
  
  799a708c727e0b568fef2c33eb08f0c0
- SHA1
  
  9ebea706a1a247001ed271f75d25b1c7abcd190e
- SHA256
  
  0ae09488bc573d8418072fb0bddadf5b2d4b23abb4534382101485f3d5f41c84
- SHA512
  
  1038742b1642b791e69608f00dc6887e8243335568f27b845316e614aaba909f9cc2befcb29f37f3a8c85fcb0940b682277eeb91d45a989271d49ab5799185dc
- SSDEEP
  
  12288:URNm5/giQI3oF4WVmaCBvylXnWHtZ2rfqLf313AJ7IRdwhSd04/ORLhW:URNmJ6WvyJCtZ27u313EIwiORLI
Score

1^/10
behavioral3 behavioral4
- Target
  
  Maple 1.96/load.dll
- Size
  
  667KB
- MD5
  
  80f0d370a527d4d10bd1e78a42d93015
- SHA1
  
  c5cd80166ef3ca51300a5c6593adf5e5b2dab7f5
- SHA256
  
  e92d2fa8a26b88cf136c897692ed90728935a003b1e8d71bb96c31e379fffa65
- SHA512
  
  f4cac114417f8011a9e172152dd0ff42ca92ed3ad857cebb49b3cf3b0c24d1a20c5ab40e2b9ae057676e28ceeb209ef447ae908575c6bf6e01c9dd29754fe824
- SSDEEP
  
  12288:9i4Idp169W8FpJTtg1reve5GuAd+HX7UbSqMN3PJ7IRdwhS+nkHhu:9i4I0ZDDvqG+HXoRMN35IwEA
Score

1^/10
behavioral5 behavioral6
- Target
  
  Maple 1.96/prejit.dll
- Size
  
  6KB
- MD5
  
  a20d3d717deda051bb38fda5145bd929
- SHA1
  
  af378513f06e02478abaf80998b932d4c61f6bc0
- SHA256
  
  6b5f727da9216887ddb30bc94fc14de840dfbc2f29df118562662f8f2db3e92d
- SHA512
  
  f15d1ab5cec9b58f7b84c6f2a0cd7187ff926f2d00e402860d8d399adf9a445a55ad8a9de0f1c77d079c62c1dcde03ae0bdc78b5547845225bb3e6e0e5e8e06e
- SSDEEP
  
  96:2Gp6jABW0ifM9HzJ4dOtlcplXJVWl77hSFVe4lu6C2:2aekLtlKc7gFA40m
Score

1^/10
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8