000f51c227a70a0b10240fff9964aa951fed6721842849d87775cb64df52c35f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

000f51c227a70a0b10240fff9964aa951fed6721842849d87775cb64df52c35f.7z
Size

795KB
Sample

240820-pvcy8swcmj
MD5

ca3d1f669a9dbb6cf389ff3b0e2d9079
SHA1

648ed36d28f63bf433e41065fa145debcf9dec04
SHA256

000f51c227a70a0b10240fff9964aa951fed6721842849d87775cb64df52c35f
SHA512

cd019f012f6118b8c64d9aae06b0f9f78f9e87a7c28b5b36482c86fe344107163c8e11be3be5c60190d0fe466b49227d87d089a4b0fbfe4a77776fc288326e6b
SSDEEP

12288:SaFfdoct7eAoIoGQ7RpyL6G/aP5fAjOY0A3y4nTYOIB/5eExJOwgWK1cvFhx2KbN:Scf2ctxclp/o50C0wEDgl1cB2Kb4T+j

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  Document0081924.exe
- Size
  
  860KB
- MD5
  
  d14d08bd3c4c4e275b01b686dfe2448d
- SHA1
  
  da9e0cff3dcde54b71359eb4f982b3755359520f
- SHA256
  
  db87b7e683d92aa8d013663c6bc6ba116023af2cb7f9ec6c2ad88694235f2b12
- SHA512
  
  6b1d1c35ccf95d10ef4cb3c2731410d8721fad3a2f21e9a68fd8888d6754dc631df2e37133dcac66abd479278d36609d4e3d7cee0112517f6afb6f332defd7c8
- SSDEEP
  
  24576:4HH6h1Owng0/fXZocIcu0H6xyyjgDOYFc:I8q0/RBbueIXk
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2