f1dadad8dee0ec7e0118aa9c1bab801bee3115501e865e2dacf95b76e52c7925 | Triage

Sharing

General

Target

f1dadad8dee0ec7e0118aa9c1bab801bee3115501e865e2dacf95b76e52c7925
Size

33KB
Sample

240919-dv7casyarh
MD5

8f8a07f7b1f3032537d74dea607e8ed6
SHA1

78fe1329a5b8a0fd8a4d9041ef1edae4a7d1f59f
SHA256

f1dadad8dee0ec7e0118aa9c1bab801bee3115501e865e2dacf95b76e52c7925
SHA512

bf659d8205865d9d746fc7459d0a65f16b3cc33f10b5b57bc98a2dc7c50158c7fe807c1c47e05c8ec0b81e34181d008b859118f88fd4b461c65fbd7ea3e79a1a
SSDEEP

768:GNmKD0N8ytZ6QLr5Xrya4EuiHj0jszFNRGBefznvLArYs:KXol/Lr5Xua4jiHj0jsJNRue7vLE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f1dadad8dee0ec7e0118aa9c1bab801bee3115501e865e2dacf95b76e52c7925
- Size
  
  33KB
- MD5
  
  8f8a07f7b1f3032537d74dea607e8ed6
- SHA1
  
  78fe1329a5b8a0fd8a4d9041ef1edae4a7d1f59f
- SHA256
  
  f1dadad8dee0ec7e0118aa9c1bab801bee3115501e865e2dacf95b76e52c7925
- SHA512
  
  bf659d8205865d9d746fc7459d0a65f16b3cc33f10b5b57bc98a2dc7c50158c7fe807c1c47e05c8ec0b81e34181d008b859118f88fd4b461c65fbd7ea3e79a1a
- SSDEEP
  
  768:GNmKD0N8ytZ6QLr5Xrya4EuiHj0jszFNRGBefznvLArYs:KXol/Lr5Xua4jiHj0jsJNRue7vLE
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2