028b888ba0f11bf976c79d0e7e79321aaa4b6b479879206b6dc7a125d6310480 | Triage

Sharing

General

Target

028b888ba0f11bf976c79d0e7e79321aaa4b6b479879206b6dc7a125d6310480
Size

322KB
Sample

221031-3yqldsech9
MD5

470bfceea0a73217ef0dbd446d32807b
SHA1

8e3f3773ddefc13de253471f1cd916388f706574
SHA256

028b888ba0f11bf976c79d0e7e79321aaa4b6b479879206b6dc7a125d6310480
SHA512

67624dc69c98124704689d0ac93595dd9d599ebf4857fc226512c9e6e43d792e6ebc395fa4159038b68e69a21c4852f9c3597b4690c855a8c47d4caeed705876
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  028b888ba0f11bf976c79d0e7e79321aaa4b6b479879206b6dc7a125d6310480
- Size
  
  322KB
- MD5
  
  470bfceea0a73217ef0dbd446d32807b
- SHA1
  
  8e3f3773ddefc13de253471f1cd916388f706574
- SHA256
  
  028b888ba0f11bf976c79d0e7e79321aaa4b6b479879206b6dc7a125d6310480
- SHA512
  
  67624dc69c98124704689d0ac93595dd9d599ebf4857fc226512c9e6e43d792e6ebc395fa4159038b68e69a21c4852f9c3597b4690c855a8c47d4caeed705876
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1