236c89487d1e1ee719f1fe55ee5adc5c9635096ebb2097ec536a5f0e3b74a6e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

236c89487d1e1ee719f1fe55ee5adc5c9635096ebb2097ec536a5f0e3b74a6e4
Size

323KB
Sample

221101-h1gfaaaafq
MD5

8c266304d059b11a13a809e5eed56d82
SHA1

2acbe7e5b7a723d1e82e88d0cc38709260805ee6
SHA256

236c89487d1e1ee719f1fe55ee5adc5c9635096ebb2097ec536a5f0e3b74a6e4
SHA512

eb97cccbaef8e1ffbaf3e7683440c479e0a97e2fffd3b1f16ca9380bb0f4a0de2d00ed0fe2c9158b16ceffd00a4bc1fcff8176968a96fe8ea70973c1bc6ba2aa
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  236c89487d1e1ee719f1fe55ee5adc5c9635096ebb2097ec536a5f0e3b74a6e4
- Size
  
  323KB
- MD5
  
  8c266304d059b11a13a809e5eed56d82
- SHA1
  
  2acbe7e5b7a723d1e82e88d0cc38709260805ee6
- SHA256
  
  236c89487d1e1ee719f1fe55ee5adc5c9635096ebb2097ec536a5f0e3b74a6e4
- SHA512
  
  eb97cccbaef8e1ffbaf3e7683440c479e0a97e2fffd3b1f16ca9380bb0f4a0de2d00ed0fe2c9158b16ceffd00a4bc1fcff8176968a96fe8ea70973c1bc6ba2aa
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1