d4993c1086acad6b1e22739fbf9e04e00a6284844ab63a03fa1c96dbda0f5124 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4993c1086acad6b1e22739fbf9e04e00a6284844ab63a03fa1c96dbda0f5124
Size

322KB
Sample

221101-a1ggaafeem
MD5

a5d25d9fb23cd728c3fbf65b72e83520
SHA1

823499d1ab91364868fd9c7f3a579e1d0e4d7121
SHA256

d4993c1086acad6b1e22739fbf9e04e00a6284844ab63a03fa1c96dbda0f5124
SHA512

fe7897772a68c191dbe8a8f569879f93eea6e109820f1c7d90010fbf4eabeba366816c2d48229477ebecedc8b7d911db977f0a0a281ad5267e9c669820f453b2
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  d4993c1086acad6b1e22739fbf9e04e00a6284844ab63a03fa1c96dbda0f5124
- Size
  
  322KB
- MD5
  
  a5d25d9fb23cd728c3fbf65b72e83520
- SHA1
  
  823499d1ab91364868fd9c7f3a579e1d0e4d7121
- SHA256
  
  d4993c1086acad6b1e22739fbf9e04e00a6284844ab63a03fa1c96dbda0f5124
- SHA512
  
  fe7897772a68c191dbe8a8f569879f93eea6e109820f1c7d90010fbf4eabeba366816c2d48229477ebecedc8b7d911db977f0a0a281ad5267e9c669820f453b2
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1