9c279a961213bb1bdbc4944555da05dbe20fc89a8d557493fa86f217bdb36b2d | Triage

Resubmissions

03-11-2024 11:03

241103-m5srbs1qfs 5

03-09-2024 16:16

240903-tqvqpssbrg 10

03-09-2024 15:55

240903-tdaj1a1anq 6

Sharing

General

Target

FileApp.zip
Size

6.0MB
Sample

241103-m5srbs1qfs
MD5

649931268d033124b6f4b0b092317949
SHA1

3caf95c8480262a0ee12b6f0a8e2d9271ee55ba8
SHA256

9c279a961213bb1bdbc4944555da05dbe20fc89a8d557493fa86f217bdb36b2d
SHA512

bd57200ca9d21ff6d55e4ef4908829f095e4cdc5626d42cd145e641f206883b734c33995a1a6baa2784a098610bf4c46bd6311ff7c2e87b51c0ca683388a6389
SSDEEP

98304:wtaO4zG9VrdRHoR3KFmpgF3R4uaYCvoQ0dVw7rk0F7JtLT:QaO4zG9JTH8KFflaNvRMVws0BJJ

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  FileApp.exe
- Size
  
  739.0MB
- MD5
  
  a6f1c5f8ff75ca1e78f55e1a05b44b39
- SHA1
  
  b3a15feeee3c80425027f0f19901a8475f64f014
- SHA256
  
  7357bdbe52a049e175f5005711fde9fbddde36ad6419006f0c3cf13ed1cb70e3
- SHA512
  
  a3503a34bee2e531e7d0175a5dc99d7d2a652bbb53d91a9ac6534cbffe1d907f04384ddc48c2bd16e77435d8b0b97118145f3d2e7c9512f2005c9ae900814c68
- SSDEEP
  
  98304:GMzgISSXaYGFQime2hKRculpYX8GRlwc2h00SQDFaFue:G4SGaRFb3TlpYlwcODFaI
Score

5^/10

discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3