6b900fd32cd93640009811c428a6566e4aa80c655681a01d036db2ba19143087 | Triage

Sharing

General

Target

nete1
Size

413KB
Sample

210722-sj2jmswq16
MD5

3308b6fe23c58b0fd2d87d54d08de826
SHA1

fd8422b9130e571177e319d63d4c17b325dce0d4
SHA256

6b900fd32cd93640009811c428a6566e4aa80c655681a01d036db2ba19143087
SHA512

ae210a01145b377555af8ae2922a7174a37d0746427cb81009442324b41333d815eff960335765af587f300d53cfcd9196d16dbaf227f5e1d943959e8768aa8b

Score

10^/10

Malware Config

Targets

- Target
  
  nete1
- Size
  
  413KB
- MD5
  
  3308b6fe23c58b0fd2d87d54d08de826
- SHA1
  
  fd8422b9130e571177e319d63d4c17b325dce0d4
- SHA256
  
  6b900fd32cd93640009811c428a6566e4aa80c655681a01d036db2ba19143087
- SHA512
  
  ae210a01145b377555af8ae2922a7174a37d0746427cb81009442324b41333d815eff960335765af587f300d53cfcd9196d16dbaf227f5e1d943959e8768aa8b
Score

10^/10
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2