66f397273148e81878a1daa42272ba6fdad47321de1b3c47602c651f164cfedb | Triage

Sharing

General

Target

66f397273148e81878a1daa42272ba6fdad47321de1b3c47602c651f164cfedb.rar
Size

675KB
Sample

240530-bmpfeaaa55
MD5

bff68f0a6cc5a3a8c876f41ebc842307
SHA1

17233ad03c02428be721eeb31261433f025b40ba
SHA256

66f397273148e81878a1daa42272ba6fdad47321de1b3c47602c651f164cfedb
SHA512

675bcc7412931e0e1411a282a0871664bdec7d5993b92ecbf4977e4873308d2e7d367411dbf3d60e7984fa4ba7a4d30b1bd44391f2b61f579c6508a745ccef82
SSDEEP

12288:huiEJy7ZoS2Ao6yq1PKqv12bYe6hfUNVUMhmGBqaZxuZC3AOlYo1r6Uenfedt6:TySM6ybqvUshSXUO/gEAOllr2fe4

Score

5^/10

Malware Config

Targets

- Target
  
  PI 10287.exe
- Size
  
  713KB
- MD5
  
  e29a8ad9f43f6dfc0812fbd621e31105
- SHA1
  
  3aebe73953d17eb882f31bb6d0fe1e6759bf8bd7
- SHA256
  
  2483ca984af41c3fc2e5f6bdf8f954dbf5fc7cae277299056064505ae9b1ad07
- SHA512
  
  1c6b63b63760d1f5f8cb19ced607bcb4163b3d955b369ea0692cdc9dc0bb5a662a46600778f7d390f44fcb3d1fd3b9e9e378f445340f5b85adad54b050d09e63
- SSDEEP
  
  12288:TfCVIoEmHPjlt7IdA0HFabzWtNc2qmxqG43jfHiEhO2v1uETYnWn2zJwaGipcG+I:GI3mvjlGFaXWtNckqF1O8JkWn2+aqk
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2