Overview

overview

5

Static

static

5

221588+226...TP.exe

windows7-x64

5

221588+226...TP.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    MalwareBazaar.4

  • Size

    760KB

  • Sample

    240802-n8ymeswfrm

  • MD5

    e0c5c1b8d1d9a4676cc5e47a0b006a33

  • SHA1

    f9b556d4f83198f4fd7de320bab5a0b30fcb631c

  • SHA256

    03394804f2b53649e7ef34d22496f9af11a13718714350ddcf4433e25d593d6c

  • SHA512

    c1e82b392459aef2b1c193262278c24b5e802cb9e99ad9fd0b45a8a785500114277a5ee22491059b0036ff5a835d2a614c987628bf010ac01ad40548e15e73b1

  • SSDEEP

    12288:DG4PKxlH4cJ5clNKCNfwngkPXG3PAuuHS+9qYd0cW689k4dIIiHabGmgky8TidLj:Dd6lH4RmCNfegkP2jgnScWNuvIiBsTKH

Score
5/10
discovery

Malware Config

Targets

    • Target

      221588+226312+226353+221632+223868+223933GEODIS+SEA AIRCTP.exe

    • Size

      1.2MB

    • MD5

      016dd3b7ef3af07dd9f93d8667594bcc

    • SHA1

      223f4f2cb3629d0fff975c0f02919de7aa8d06d3

    • SHA256

      a5edb017a2c0bf9834ff392e81d47ed90dade6e41c0549a8b3e9522e76d2c8c2

    • SHA512

      8f289265a120e31197f05165c2cfda4de3511bfced536ea4ca7524337cfb0f0c6156288b8adc200b060fcf899e7feda46b9bb6a5643e11a27ed8904b7840a4ce

    • SSDEEP

      24576:eqDEvCTbMWu7rQYlBQcBiT6rprG8aftISUniH2iZiToNB:eTvC/MTQYxsWR7aftB2iZikN

    Score
    5/10
    discovery

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks