3a1f714a53d830ba3d69a5dc74192cbcbda954e3d2b244e5d95bfd17117fc641 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a1f714a53d830ba3d69a5dc74192cbcbda954e3d2b244e5d95bfd17117fc641.exe
Size

711KB
Sample

240724-bw94gazgnl
MD5

c2960ffbe8e2b844eb23f4d35ca742e0
SHA1

bcd13ed8a372e6834e580c95a6f19360cd24af3f
SHA256

3a1f714a53d830ba3d69a5dc74192cbcbda954e3d2b244e5d95bfd17117fc641
SHA512

19a4db913f1b946e817ed53f41a59c80a3cb4d1e5ffa8457a20b8a3bced1b287fefb18b1c85407c3c27235875675d9cba9f52587b5547367ddd9cfa042882129
SSDEEP

12288:14ndmoHtPJiWM3aqk3WFf+63o830bYlt8kmEn:2nghWMNcWFf+a0bYX8O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3a1f714a53d830ba3d69a5dc74192cbcbda954e3d2b244e5d95bfd17117fc641.exe
- Size
  
  711KB
- MD5
  
  c2960ffbe8e2b844eb23f4d35ca742e0
- SHA1
  
  bcd13ed8a372e6834e580c95a6f19360cd24af3f
- SHA256
  
  3a1f714a53d830ba3d69a5dc74192cbcbda954e3d2b244e5d95bfd17117fc641
- SHA512
  
  19a4db913f1b946e817ed53f41a59c80a3cb4d1e5ffa8457a20b8a3bced1b287fefb18b1c85407c3c27235875675d9cba9f52587b5547367ddd9cfa042882129
- SSDEEP
  
  12288:14ndmoHtPJiWM3aqk3WFf+63o830bYlt8kmEn:2nghWMNcWFf+a0bYX8O
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2