d9b7e330845fc9e567f0a541e210eee19a5dad3acc3dd1bfba087f66b21663cf | Triage

Sharing

General

Target

d9b7e330845fc9e567f0a541e210eee19a5dad3acc3dd1bfba087f66b21663cf
Size

322KB
Sample

221031-zyandsdhhq
MD5

8b79023c42751796aae664006db183d9
SHA1

90cae43c5b84dd29c1ec558be0e2b398151f8769
SHA256

d9b7e330845fc9e567f0a541e210eee19a5dad3acc3dd1bfba087f66b21663cf
SHA512

5e270c70ec8b53d38e441a09a5ebddebf9ddcaefca40ff53f24c2ab8d24abdfe3aeaffa105f4021a2063983efbdce2045c42e792a26facea3b9ebe78cda02ac7
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  d9b7e330845fc9e567f0a541e210eee19a5dad3acc3dd1bfba087f66b21663cf
- Size
  
  322KB
- MD5
  
  8b79023c42751796aae664006db183d9
- SHA1
  
  90cae43c5b84dd29c1ec558be0e2b398151f8769
- SHA256
  
  d9b7e330845fc9e567f0a541e210eee19a5dad3acc3dd1bfba087f66b21663cf
- SHA512
  
  5e270c70ec8b53d38e441a09a5ebddebf9ddcaefca40ff53f24c2ab8d24abdfe3aeaffa105f4021a2063983efbdce2045c42e792a26facea3b9ebe78cda02ac7
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1