5f0f76108593d7ecc8a5932e244c0168947b173bf24369ced9793f9a034d04c5 | Triage

Sharing

General

Target

Doc#662020094753525765677.exe
Size

1.0MB
Sample

200624-8v664ntwda
MD5

9749efdaa8c5b0cc54dbec79dfdc5451
SHA1

c95de8b2e804171f3f2b4dde27ecde46658a3ece
SHA256

5f0f76108593d7ecc8a5932e244c0168947b173bf24369ced9793f9a034d04c5
SHA512

043e14721a1739f20d397705ccf9acba68ef7536e63c589f72beeb368de261cf1fd632688c0850da50540b18901dc49035712c1573ac2782999cea9a32419dce

Score

7^/10

Malware Config

Targets

- Target
  
  Doc#662020094753525765677.exe
- Size
  
  1.0MB
- MD5
  
  9749efdaa8c5b0cc54dbec79dfdc5451
- SHA1
  
  c95de8b2e804171f3f2b4dde27ecde46658a3ece
- SHA256
  
  5f0f76108593d7ecc8a5932e244c0168947b173bf24369ced9793f9a034d04c5
- SHA512
  
  043e14721a1739f20d397705ccf9acba68ef7536e63c589f72beeb368de261cf1fd632688c0850da50540b18901dc49035712c1573ac2782999cea9a32419dce
Score

7^/10
- Drops startup file
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

behavioral2