bf8768d733e30c21fd2727e833a6d092703fd60f62c64cdb37ed91c2456679a7 | Triage

Sharing

General

Target

bf8768d733e30c21fd2727e833a6d092703fd60f62c64cdb37ed91c2456679a7
Size

322KB
Sample

221031-1xkyeadec5
MD5

ba1c2f5f5efdbd8de98a8b6bcac4741f
SHA1

b920891cd38337424effad4625b7d4c4b4b2e39a
SHA256

bf8768d733e30c21fd2727e833a6d092703fd60f62c64cdb37ed91c2456679a7
SHA512

1b0eb0733935b2cc7c986c32160349e01e47b24d2a37bded8b1ae04048e928c1acbe12faef799bad3f6d3f9c3285f646f98dbb1c68a554232269d4d8a2fb3cc3
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  bf8768d733e30c21fd2727e833a6d092703fd60f62c64cdb37ed91c2456679a7
- Size
  
  322KB
- MD5
  
  ba1c2f5f5efdbd8de98a8b6bcac4741f
- SHA1
  
  b920891cd38337424effad4625b7d4c4b4b2e39a
- SHA256
  
  bf8768d733e30c21fd2727e833a6d092703fd60f62c64cdb37ed91c2456679a7
- SHA512
  
  1b0eb0733935b2cc7c986c32160349e01e47b24d2a37bded8b1ae04048e928c1acbe12faef799bad3f6d3f9c3285f646f98dbb1c68a554232269d4d8a2fb3cc3
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1