16e1644c0b9b7414634b300520f04b6cdcfe9c1d9b424be3230d5f5b0d12c6b9 | Triage

Sharing

General

Target

16e1644c0b9b7414634b300520f04b6cdcfe9c1d9b424be3230d5f5b0d12c6b9
Size

322KB
Sample

221031-zy7ywseaar
MD5

f597cf632f543be4d4b65d42d39b3b7a
SHA1

69c4f85394fbce28fd2910595e58b3b1860af1b9
SHA256

16e1644c0b9b7414634b300520f04b6cdcfe9c1d9b424be3230d5f5b0d12c6b9
SHA512

8b823116768bf130aa81045aac55b1114f7fdad2b0de5cd36c2fefaf74ab446541c122c1bebfa718d05372e7c9a6e57ecbb1337a173bf844bb72004714b03c07
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  16e1644c0b9b7414634b300520f04b6cdcfe9c1d9b424be3230d5f5b0d12c6b9
- Size
  
  322KB
- MD5
  
  f597cf632f543be4d4b65d42d39b3b7a
- SHA1
  
  69c4f85394fbce28fd2910595e58b3b1860af1b9
- SHA256
  
  16e1644c0b9b7414634b300520f04b6cdcfe9c1d9b424be3230d5f5b0d12c6b9
- SHA512
  
  8b823116768bf130aa81045aac55b1114f7fdad2b0de5cd36c2fefaf74ab446541c122c1bebfa718d05372e7c9a6e57ecbb1337a173bf844bb72004714b03c07
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1