17d5794b01b5ad2c24ebf9a483f9a6cb20edf7a20b6c5e02fd2e2549ccde8790 | Triage

Submit
Reports

Overview

overview

5

Static

static

5

INVOICE COPY.exe

windows7-x64

5

INVOICE COPY.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

Target

17d5794b01b5ad2c24ebf9a483f9a6cb20edf7a20b6c5e02fd2e2549ccde8790
Size

1019KB
Sample

241010-bfl2psshkd
MD5

233700ad9d73cc74111877a902a03185
SHA1

44792b50e2514c9ce0ad057d16c918efb71cd619
SHA256

17d5794b01b5ad2c24ebf9a483f9a6cb20edf7a20b6c5e02fd2e2549ccde8790
SHA512

ac0e423c0ea1b5743028148a317502ff8bb6c07a6c6affdbb4b20d068575d242f46ffb8099efc9572de504d3d8d744406709e1619b7a000f5ef39ae286bc39ed
SSDEEP

24576:HrjfYFcMvMq5VFI+b+o8j2jGln/XNNhgDip1UuFVam:feVVe7P66/9N+Di8ob

Score

5^/10

discovery

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

INVOICE COPY.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

INVOICE COPY.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  INVOICE COPY.exe
- Size
  
  1.3MB
- MD5
  
  121d5a8250761a9a1db6815b37e9d0d0
- SHA1
  
  d9b2928ff8f438bbad2617e709a4a21e668a57c8
- SHA256
  
  bfa4a9b318de460635ac0928e2987c8f83a6e86d123290c958acb3f221db1f55
- SHA512
  
  39dde5ff8d323ee77ee056ebf39112c27bab118c02d5274c04681deb6b088c0cfddeb6f3372723f1646150f09f0e3cd5073441251d8c052841ed6a4effea4d15
- SSDEEP
  
  24576:ffmMv6Ckr7Mny5QLv4+9+s6n+j+lXBXNNXOriprAwFPas:f3v+7/5QLQzL+aR9N+riaiJ
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy