8d1e1e4a8effc77c66b47eb5d161f8518d05e8791830e7bbb60639317e4f24bb | Triage

Sharing

General

Target

8d1e1e4a8effc77c66b47eb5d161f8518d05e8791830e7bbb60639317e4f24bb
Size

127KB
Sample

220919-rb1masfgel
MD5

0b9844ef0edc57c60e9188bfd3dad245
SHA1

13cb730bae50764288b1dfcd24f29479411a9419
SHA256

8d1e1e4a8effc77c66b47eb5d161f8518d05e8791830e7bbb60639317e4f24bb
SHA512

3e41f2c08b9135dcaf8613cb25a65d80fe1140671af4eccbbc7ea70b5d0c9ff067a4f278aa826e0b062162d29f658de1792a5e9ec557a96363ac0e062322af26
SSDEEP

1536:vWwzeqNQ43BIUK0inQgtepKBc+qhNgyurzT38jTm+EAxPavPtoeCen9gwxKTozQ0:uiw0KSbzgyW38yPt8ZwAkPphPR

Score

8^/10

Malware Config

Targets

- Target
  
  8d1e1e4a8effc77c66b47eb5d161f8518d05e8791830e7bbb60639317e4f24bb
- Size
  
  127KB
- MD5
  
  0b9844ef0edc57c60e9188bfd3dad245
- SHA1
  
  13cb730bae50764288b1dfcd24f29479411a9419
- SHA256
  
  8d1e1e4a8effc77c66b47eb5d161f8518d05e8791830e7bbb60639317e4f24bb
- SHA512
  
  3e41f2c08b9135dcaf8613cb25a65d80fe1140671af4eccbbc7ea70b5d0c9ff067a4f278aa826e0b062162d29f658de1792a5e9ec557a96363ac0e062322af26
- SSDEEP
  
  1536:vWwzeqNQ43BIUK0inQgtepKBc+qhNgyurzT38jTm+EAxPavPtoeCen9gwxKTozQ0:uiw0KSbzgyW38yPt8ZwAkPphPR
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2