1b95fb48799280f5fd63dbcb5ba64d726f3547beeb60c8e6e0773ac09589f659 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b95fb48799280f5fd63dbcb5ba64d726f3547beeb60c8e6e0773ac09589f659
Size

323KB
Sample

221101-eflbysggaq
MD5

adef9a0661f8cf8c01f2b721d0746b55
SHA1

5062ae9fd6e4b195ba3f916a1d6aa7fd760ef3c2
SHA256

1b95fb48799280f5fd63dbcb5ba64d726f3547beeb60c8e6e0773ac09589f659
SHA512

fd7af775f6bf0ad258ce3548586ad13e60d2c08789e25b014a86171a8b4a8a644beb7a96f9f16e292beaf10aa73da3111c26569eb7ece340b39d8b70814c5b64
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  1b95fb48799280f5fd63dbcb5ba64d726f3547beeb60c8e6e0773ac09589f659
- Size
  
  323KB
- MD5
  
  adef9a0661f8cf8c01f2b721d0746b55
- SHA1
  
  5062ae9fd6e4b195ba3f916a1d6aa7fd760ef3c2
- SHA256
  
  1b95fb48799280f5fd63dbcb5ba64d726f3547beeb60c8e6e0773ac09589f659
- SHA512
  
  fd7af775f6bf0ad258ce3548586ad13e60d2c08789e25b014a86171a8b4a8a644beb7a96f9f16e292beaf10aa73da3111c26569eb7ece340b39d8b70814c5b64
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1