b705ba7c277116793b9ada1e44f31925be634819d140ac414d2e2f30fef6e3e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b705ba7c277116793b9ada1e44f31925be634819d140ac414d2e2f30fef6e3e7
Size

228KB
Sample

220912-mdsbgsdaf5
MD5

f74b6e0e420db15b2a65adbc0ad4e1a8
SHA1

e35344d0929cae130e942f874111a0b848c9494d
SHA256

b705ba7c277116793b9ada1e44f31925be634819d140ac414d2e2f30fef6e3e7
SHA512

1a094c19f569cf95314bfe0af01db59f2df6833df660f31c97175107a4a0e91fdf888341ef62d3469786b975ba1b7276292db69127e84fcc3e1f315325449763
SSDEEP

6144:ZloaO6ua2/l0Jckb7KaaMf13chd2vZgzadOXYc:Zlo1ycm7fayOXP

Score

8^/10

Malware Config

Targets

- Target
  
  b705ba7c277116793b9ada1e44f31925be634819d140ac414d2e2f30fef6e3e7
- Size
  
  228KB
- MD5
  
  f74b6e0e420db15b2a65adbc0ad4e1a8
- SHA1
  
  e35344d0929cae130e942f874111a0b848c9494d
- SHA256
  
  b705ba7c277116793b9ada1e44f31925be634819d140ac414d2e2f30fef6e3e7
- SHA512
  
  1a094c19f569cf95314bfe0af01db59f2df6833df660f31c97175107a4a0e91fdf888341ef62d3469786b975ba1b7276292db69127e84fcc3e1f315325449763
- SSDEEP
  
  6144:ZloaO6ua2/l0Jckb7KaaMf13chd2vZgzadOXYc:Zlo1ycm7fayOXP
Score

8^/10
- Downloads MZ/PE file
- Drops file in Drivers directory
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2