a46444b9122f1f6b4a7b004d25add27e0990594a7613b8067074d55afa13f1c9 | Triage

Sharing

General

Target

a46444b9122f1f6b4a7b004d25add27e0990594a7613b8067074d55afa13f1c9.zip
Size

722KB
Sample

241016-fz4s3svamf
MD5

480f0d8caf8a5b26231afc402b7a4386
SHA1

5db2fc0c0cd5833a067ff8275c1b6074e47762bd
SHA256

a46444b9122f1f6b4a7b004d25add27e0990594a7613b8067074d55afa13f1c9
SHA512

9285d17614870e7a5a38fd6e061242b752e2d2119ef51190a33792b4d497eb9c93bcc3ed16cfa150f51b3bc7d277be0d66315f3d52e67f7cb7d4c33fac09c2b0
SSDEEP

12288:b4zIljUZvfbRJQfeuhBzULft2QSGY2yD2J4F2q8w8rh0fucG+1CbMwdL2ksdmK5l:cMljUtKB+JSwtJgtGr6GRbfwmdhHV5e/

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  bluemaintenance`/bluemaintenance`.exe
- Size
  
  1.2MB
- MD5
  
  a5cd8b932faf92e4b803614f86bec0b7
- SHA1
  
  ce444152b967a2bd67a32671424d7b6ed87d1025
- SHA256
  
  86304b458edfacda0d8b640b232c17bf69647cca2596a91416f202f66b9e6cbd
- SHA512
  
  956d9674a7a262de61ab5836f70d7a623f005fb8cba50296dbdb1ff70045f0b90a410107a697190de029ff6828680d95529191eb20a050617270c2789b2c7542
- SSDEEP
  
  24576:1G07HUw9ZbnJFx+Dp2micGd+AEPFmPquiOIe:1G0wM+Ami1dZAFmP9I
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2