f91f135e5aecd2e2e8d81ac771475de147b858c1807bde08e47cdf68f545d8da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

lol.exe
Size

869KB
Sample

200715-zvnwrqbl5x
MD5

4a37a3769de56de4edcc8853d50e29e0
SHA1

77d87412145a994e30a6493e2fe9e272da22e713
SHA256

f91f135e5aecd2e2e8d81ac771475de147b858c1807bde08e47cdf68f545d8da
SHA512

683b64bcf31386048c0c7169fa020c8a6861ad9d142fa054afb6835f99480d88e0cd5d5f3a5343dde874e7624ceafcd09a63dccb2e3af9202b20af0f0cc055ef

Score

7^/10

Malware Config

Targets

- Target
  
  lol.exe
- Size
  
  869KB
- MD5
  
  4a37a3769de56de4edcc8853d50e29e0
- SHA1
  
  77d87412145a994e30a6493e2fe9e272da22e713
- SHA256
  
  f91f135e5aecd2e2e8d81ac771475de147b858c1807bde08e47cdf68f545d8da
- SHA512
  
  683b64bcf31386048c0c7169fa020c8a6861ad9d142fa054afb6835f99480d88e0cd5d5f3a5343dde874e7624ceafcd09a63dccb2e3af9202b20af0f0cc055ef
Score

7^/10
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2