bab7fb77a85d0588890f402e7ef8b554690c006d0ff6313b74c078ba77efb67c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bab7fb77a85d0588890f402e7ef8b554690c006d0ff6313b74c078ba77efb67c
Size

323KB
Sample

221101-hbjt4shhbn
MD5

f1bda9524616143b848f35113b7d4bee
SHA1

4adfde4ba29deb12cf1f9f81b1c424ad4549477c
SHA256

bab7fb77a85d0588890f402e7ef8b554690c006d0ff6313b74c078ba77efb67c
SHA512

3692b6988d3fcbeb164297495213ff387bfdbbf35f0c9be22c4a10edd4b4d88a05d65a84c1209cfa3c8c526124cd740f4a818be65562461d3ab541d5029b4d14
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  bab7fb77a85d0588890f402e7ef8b554690c006d0ff6313b74c078ba77efb67c
- Size
  
  323KB
- MD5
  
  f1bda9524616143b848f35113b7d4bee
- SHA1
  
  4adfde4ba29deb12cf1f9f81b1c424ad4549477c
- SHA256
  
  bab7fb77a85d0588890f402e7ef8b554690c006d0ff6313b74c078ba77efb67c
- SHA512
  
  3692b6988d3fcbeb164297495213ff387bfdbbf35f0c9be22c4a10edd4b4d88a05d65a84c1209cfa3c8c526124cd740f4a818be65562461d3ab541d5029b4d14
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1