14d28d46dcf87a9951736b389440627c16cd40130dd5e2ab5077f0cd86829568 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14d28d46dcf87a9951736b389440627c16cd40130dd5e2ab5077f0cd86829568
Size

58KB
Sample

221019-3hnf4adber
MD5

a0c99204a70f84d085ad020aca4f2630
SHA1

de380e1773565dcfde9473cd1d2ea237a9e94424
SHA256

14d28d46dcf87a9951736b389440627c16cd40130dd5e2ab5077f0cd86829568
SHA512

e7d79c714d12e872b507a16e9054f16cf81f59412ebccbaea9ed549e0e733e7f808c01193a712ab11414843ca8e9d6dc89d00de6e28ed8fd85bb80e55e719d51
SSDEEP

1536:q6xlkNGePf7T82BbcB/QXnWm1rOl8F+o62r:q6xqXbT80gB/Fm1rO8r

Score

8^/10

Malware Config

Targets

- Target
  
  14d28d46dcf87a9951736b389440627c16cd40130dd5e2ab5077f0cd86829568
- Size
  
  58KB
- MD5
  
  a0c99204a70f84d085ad020aca4f2630
- SHA1
  
  de380e1773565dcfde9473cd1d2ea237a9e94424
- SHA256
  
  14d28d46dcf87a9951736b389440627c16cd40130dd5e2ab5077f0cd86829568
- SHA512
  
  e7d79c714d12e872b507a16e9054f16cf81f59412ebccbaea9ed549e0e733e7f808c01193a712ab11414843ca8e9d6dc89d00de6e28ed8fd85bb80e55e719d51
- SSDEEP
  
  1536:q6xlkNGePf7T82BbcB/QXnWm1rOl8F+o62r:q6xqXbT80gB/Fm1rO8r
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2