General

  • Target

    3b4e709768d7cd0cb895de74267f45a6ef6565ebed445393878f17ae02a983e3

  • Size

    200.0MB

  • Sample

    241104-qk3yca1apl

  • MD5

    9dfb5581b664fc1d9e23d4eb917acf0f

  • SHA1

    ecb6b3a63ecdcd06c952b1ab15ba6b5e531fa389

  • SHA256

    3b4e709768d7cd0cb895de74267f45a6ef6565ebed445393878f17ae02a983e3

  • SHA512

    a3cdb19da5d151c3564d58fdfae792cba3adc76d402d9f4d130075ee0a941897093ce0d9420cfba77dd0f4dfacbe92a84f6fe100393766113b5a176ccf088935

  • SSDEEP

    1536:E8YbHjHjpbvusZfxDRJpX3YrYET02Ni2eP+:xGH7jpbWs1vDqBTBQ2P

Score
10/10

Malware Config

Targets

    • Target

      3b4e709768d7cd0cb895de74267f45a6ef6565ebed445393878f17ae02a983e3

    • Size

      200.0MB

    • MD5

      9dfb5581b664fc1d9e23d4eb917acf0f

    • SHA1

      ecb6b3a63ecdcd06c952b1ab15ba6b5e531fa389

    • SHA256

      3b4e709768d7cd0cb895de74267f45a6ef6565ebed445393878f17ae02a983e3

    • SHA512

      a3cdb19da5d151c3564d58fdfae792cba3adc76d402d9f4d130075ee0a941897093ce0d9420cfba77dd0f4dfacbe92a84f6fe100393766113b5a176ccf088935

    • SSDEEP

      1536:E8YbHjHjpbvusZfxDRJpX3YrYET02Ni2eP+:xGH7jpbWs1vDqBTBQ2P

    Score
    10/10
    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Accesses Microsoft Outlook profiles

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks