ca1d8f4d60c43c571a3eb2a57434031615a31ef85d78e8ebe689f323b058d2ef | Triage

Resubmissions

25/06/2024, 13:52

240625-q6n2bawgpn 5

25/06/2024, 13:51

240625-q5s9mswgkr 5

Sharing

Copy URL Twitter E-mail

General

Target

github.software.1.0.9.7z
Size

2.8MB
Sample

240625-q5s9mswgkr
MD5

f6f38108c828aeccf9c1d26b9e326dd0
SHA1

d6c9b8b9cef3b80ee0a9e8689b56e3fdf527a045
SHA256

ca1d8f4d60c43c571a3eb2a57434031615a31ef85d78e8ebe689f323b058d2ef
SHA512

c277dcb5811a7227d16c92c60d9d49dc91667f9bdff76ff4c66033479d0cbbbefa4f09a4662b5e8c29a1d2e96af4e701003470633a2e56adedf1cd15786b059f
SSDEEP

49152:k8kxjU8NIEl9J7ORIaPExyzl2XH+BIcLda6s3+lKmWGHJ3WumAWQ:nkxjU8NIEzRCh2YlI+BIcRa6s3+cmWGX

Score

5^/10

Malware Config

Targets

- Target
  
  github.software.1.0.9.exe
- Size
  
  536KB
- MD5
  
  43e5a7db0f4fd1f8eac855a82ff4d740
- SHA1
  
  2d937cb5dba9625b9c86330498dc5d95ba6c1652
- SHA256
  
  dba57d43edbe4823ad6a98183517e6956339f1d7e6f1eee203befc9c5d355ef2
- SHA512
  
  d46a2743b1e2f7ad939d6c2356cc164de8104a497f92360c22712e8c6455162af4c1b94bd2847872c66cc5aa1cc2026f9df45083ef433396c8ab0b62e4cade53
- SSDEEP
  
  12288:DlBNdPJWeqA8Ow2ks9Qekt4lsAXJID9Bc7cphEAssyo8:DT3JP9stbgupu7c+sJ
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2