4b52fbed6026c5067e24ce3db28fbfe8521aecbd85bb9e78f2483e7c93f75827 | Triage

Sharing

General

Target

4b52fbed6026c5067e24ce3db28fbfe8521aecbd85bb9e78f2483e7c93f75827
Size

322KB
Sample

221101-a5rstafehk
MD5

b81fb6eb1723b9e6f2f4310d6ec88565
SHA1

06a1502edfe1f3a428d7fff71f7f40b58e6a6e52
SHA256

4b52fbed6026c5067e24ce3db28fbfe8521aecbd85bb9e78f2483e7c93f75827
SHA512

2d99d09c7e4e6e92c784c259c4ef9b8a040d88fbe25b17c13ac79a74d875015339b8c828d263fed2392d337a94612be76a15c2b1ec6cb4f0d6c8610440861cd1
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  4b52fbed6026c5067e24ce3db28fbfe8521aecbd85bb9e78f2483e7c93f75827
- Size
  
  322KB
- MD5
  
  b81fb6eb1723b9e6f2f4310d6ec88565
- SHA1
  
  06a1502edfe1f3a428d7fff71f7f40b58e6a6e52
- SHA256
  
  4b52fbed6026c5067e24ce3db28fbfe8521aecbd85bb9e78f2483e7c93f75827
- SHA512
  
  2d99d09c7e4e6e92c784c259c4ef9b8a040d88fbe25b17c13ac79a74d875015339b8c828d263fed2392d337a94612be76a15c2b1ec6cb4f0d6c8610440861cd1
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1