07031e0bb15ebb05b890ee132baa1d683a66a023ff05cc096c0b62043a28f5a9 | Triage

Sharing

General

Target

07031e0bb15ebb05b890ee132baa1d683a66a023ff05cc096c0b62043a28f5a9
Size

1.2MB
Sample

221020-lagj5sfch7
MD5

804f59e8df0b78aff0da1376f58852cf
SHA1

18cce0d282a5df82f65c7bcd151820d284055c38
SHA256

07031e0bb15ebb05b890ee132baa1d683a66a023ff05cc096c0b62043a28f5a9
SHA512

1d1711d8cabc2ead662fe173bd3f684cc8b7ec760da3fca1f19f1c39f4bacf6b39c577c392106fe487928c922bc6d4eb31e0244090af9ffa76cd0d67afb7b4a3
SSDEEP

12288:pzE4EJNaU6OPDA9EfmjfqLekRO0bKVQK/NEOBGiKrmBTLQ/wfpfhCy9Umhot5:9GEfqK5xYr7y90

Score

7^/10

Malware Config

Targets

- Target
  
  07031e0bb15ebb05b890ee132baa1d683a66a023ff05cc096c0b62043a28f5a9
- Size
  
  1.2MB
- MD5
  
  804f59e8df0b78aff0da1376f58852cf
- SHA1
  
  18cce0d282a5df82f65c7bcd151820d284055c38
- SHA256
  
  07031e0bb15ebb05b890ee132baa1d683a66a023ff05cc096c0b62043a28f5a9
- SHA512
  
  1d1711d8cabc2ead662fe173bd3f684cc8b7ec760da3fca1f19f1c39f4bacf6b39c577c392106fe487928c922bc6d4eb31e0244090af9ffa76cd0d67afb7b4a3
- SSDEEP
  
  12288:pzE4EJNaU6OPDA9EfmjfqLekRO0bKVQK/NEOBGiKrmBTLQ/wfpfhCy9Umhot5:9GEfqK5xYr7y90
Score

7^/10
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2