02b0cfe099a53855dd8ac758bb3ee0c4a8eaacca31c55b82a1e4ffb8d50499ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02b0cfe099a53855dd8ac758bb3ee0c4a8eaacca31c55b82a1e4ffb8d50499ef
Size

322KB
Sample

221031-1wm2daedbl
MD5

c6ac686f425231dca453c730dc923f05
SHA1

6240d14f600146afe21a2990bae779662389b14e
SHA256

02b0cfe099a53855dd8ac758bb3ee0c4a8eaacca31c55b82a1e4ffb8d50499ef
SHA512

d060be02a53f787fc61413357ca714a97648b5e68ef40067e6a6ee36f7d9bacc0d9f36db66cc788f85e183f674cf8bce502d8177fcbd0e374a516bbc2d095063
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  02b0cfe099a53855dd8ac758bb3ee0c4a8eaacca31c55b82a1e4ffb8d50499ef
- Size
  
  322KB
- MD5
  
  c6ac686f425231dca453c730dc923f05
- SHA1
  
  6240d14f600146afe21a2990bae779662389b14e
- SHA256
  
  02b0cfe099a53855dd8ac758bb3ee0c4a8eaacca31c55b82a1e4ffb8d50499ef
- SHA512
  
  d060be02a53f787fc61413357ca714a97648b5e68ef40067e6a6ee36f7d9bacc0d9f36db66cc788f85e183f674cf8bce502d8177fcbd0e374a516bbc2d095063
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1