f2ba48f9b1da2b3971f2e70b772a4d6fc503eb4b890fca1923b322687b77dd9f | Triage

Sharing

General

Target

f2ba48f9b1da2b3971f2e70b772a4d6fc503eb4b890fca1923b322687b77dd9f
Size

1.1MB
Sample

221031-j1as6sbcbj
MD5

3cbeec829f400bbc837e6cedf044a6cb
SHA1

b6906942e53a1482069c123ca7f127cdf50c25fc
SHA256

f2ba48f9b1da2b3971f2e70b772a4d6fc503eb4b890fca1923b322687b77dd9f
SHA512

285f08009934e530ef37b1c98097e7ab1134943e0796fbc0413883e367110aa1d4f14f5ed242b9386d8677e2cbc3000bbe3ccea5ac27b0aa72128425c8106806
SSDEEP

24576:Lz8peBspkGFfvegUTumRxQOwVs2P8AWleXv/pw6gqCY6z3f:LgeBspFfLUTzRxQOwVs20AWleXv/pXDU

Score

8^/10

Malware Config

Targets

- Target
  
  f2ba48f9b1da2b3971f2e70b772a4d6fc503eb4b890fca1923b322687b77dd9f
- Size
  
  1.1MB
- MD5
  
  3cbeec829f400bbc837e6cedf044a6cb
- SHA1
  
  b6906942e53a1482069c123ca7f127cdf50c25fc
- SHA256
  
  f2ba48f9b1da2b3971f2e70b772a4d6fc503eb4b890fca1923b322687b77dd9f
- SHA512
  
  285f08009934e530ef37b1c98097e7ab1134943e0796fbc0413883e367110aa1d4f14f5ed242b9386d8677e2cbc3000bbe3ccea5ac27b0aa72128425c8106806
- SSDEEP
  
  24576:Lz8peBspkGFfvegUTumRxQOwVs2P8AWleXv/pw6gqCY6z3f:LgeBspFfLUTzRxQOwVs20AWleXv/pXDU
Score

8^/10
- Executes dropped EXE
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Scripting

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1