4381b37b205ac377e3d4a0c1c0cf263026f1828f101a926543d63eef4d53f981 | Triage

Sharing

General

Target

4381b37b205ac377e3d4a0c1c0cf263026f1828f101a926543d63eef4d53f981
Size

321KB
Sample

221031-wwfvvacegn
MD5

537eaa673473833f7c8459b2cc3c38a8
SHA1

b7acb51b0af3dab76c41cfd19bc8627ad36d1b7f
SHA256

4381b37b205ac377e3d4a0c1c0cf263026f1828f101a926543d63eef4d53f981
SHA512

808cdae6a3f7a9bf8f5f215995e63ee464cf8ed7e2370d3cf7a1ead8dd5350baa00429217e2af48e2febb52e2e624dd23203d64c173ef0067a43a2ef6d4b5689
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  4381b37b205ac377e3d4a0c1c0cf263026f1828f101a926543d63eef4d53f981
- Size
  
  321KB
- MD5
  
  537eaa673473833f7c8459b2cc3c38a8
- SHA1
  
  b7acb51b0af3dab76c41cfd19bc8627ad36d1b7f
- SHA256
  
  4381b37b205ac377e3d4a0c1c0cf263026f1828f101a926543d63eef4d53f981
- SHA512
  
  808cdae6a3f7a9bf8f5f215995e63ee464cf8ed7e2370d3cf7a1ead8dd5350baa00429217e2af48e2febb52e2e624dd23203d64c173ef0067a43a2ef6d4b5689
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1