6b185143374cc02fbcb63329c8c09bdcb1928d8091583066007d35609b4094bb | Triage

Sharing

General

Target

6b185143374cc02fbcb63329c8c09bdcb1928d8091583066007d35609b4094bb
Size

321KB
Sample

221031-xamxpscgbj
MD5

891adc655719c1bf740bb0849e0ea5b3
SHA1

6901fdec4385d79ea2ad8a0c205b563cf683c45a
SHA256

6b185143374cc02fbcb63329c8c09bdcb1928d8091583066007d35609b4094bb
SHA512

ceb24fb42e6a1a0f3aac4e339eb44bbdb746c1f64343f6029a513e14c2fc7dc7dfebc2e4d10b2f2b223f43a62c9a980134815a9aee488699b7a37890b874bad7
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  6b185143374cc02fbcb63329c8c09bdcb1928d8091583066007d35609b4094bb
- Size
  
  321KB
- MD5
  
  891adc655719c1bf740bb0849e0ea5b3
- SHA1
  
  6901fdec4385d79ea2ad8a0c205b563cf683c45a
- SHA256
  
  6b185143374cc02fbcb63329c8c09bdcb1928d8091583066007d35609b4094bb
- SHA512
  
  ceb24fb42e6a1a0f3aac4e339eb44bbdb746c1f64343f6029a513e14c2fc7dc7dfebc2e4d10b2f2b223f43a62c9a980134815a9aee488699b7a37890b874bad7
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1