514b286061a950d16d256bed53a349798bd010795a94f81844d11a5094eeabc1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

514b286061a950d16d256bed53a349798bd010795a94f81844d11a5094eeabc1
Size

323KB
Sample

221101-gfalkahecr
MD5

8bd596b29e939449eaaff3231ad990bb
SHA1

09682073037f0fb31c5b86032a8b17be963ba281
SHA256

514b286061a950d16d256bed53a349798bd010795a94f81844d11a5094eeabc1
SHA512

01228f58d15cf9f173b73b884e38c594d2c5b8a287c39266732003d6ac6843d3d6f837af07ccd9f9373a07d49135ab33c56266a7dd65852681f3e9e7ea33539d
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  514b286061a950d16d256bed53a349798bd010795a94f81844d11a5094eeabc1
- Size
  
  323KB
- MD5
  
  8bd596b29e939449eaaff3231ad990bb
- SHA1
  
  09682073037f0fb31c5b86032a8b17be963ba281
- SHA256
  
  514b286061a950d16d256bed53a349798bd010795a94f81844d11a5094eeabc1
- SHA512
  
  01228f58d15cf9f173b73b884e38c594d2c5b8a287c39266732003d6ac6843d3d6f837af07ccd9f9373a07d49135ab33c56266a7dd65852681f3e9e7ea33539d
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1