d9624824542a8bafe6b09b58b94408f7bc4d8b2d135b078950ac6b25fb5c4663 | Triage

Sharing

General

Target

d9624824542a8bafe6b09b58b94408f7bc4d8b2d135b078950ac6b25fb5c4663
Size

323KB
Sample

221101-ka6ctshff5
MD5

f9361a9d2fc8bcfeeefeebc673a00d7a
SHA1

4ee2ef9cc018a1f73d85e99592beae0be0d91687
SHA256

d9624824542a8bafe6b09b58b94408f7bc4d8b2d135b078950ac6b25fb5c4663
SHA512

139124f1fce93a641a334a4a0f8ea0cefe8209573f2ed6c98edad5c4f09303f6e2a0fe53a6f37564f618326b9e7c1dd3e4c0263c3290b3a366b4a92e1dbf526b
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  d9624824542a8bafe6b09b58b94408f7bc4d8b2d135b078950ac6b25fb5c4663
- Size
  
  323KB
- MD5
  
  f9361a9d2fc8bcfeeefeebc673a00d7a
- SHA1
  
  4ee2ef9cc018a1f73d85e99592beae0be0d91687
- SHA256
  
  d9624824542a8bafe6b09b58b94408f7bc4d8b2d135b078950ac6b25fb5c4663
- SHA512
  
  139124f1fce93a641a334a4a0f8ea0cefe8209573f2ed6c98edad5c4f09303f6e2a0fe53a6f37564f618326b9e7c1dd3e4c0263c3290b3a366b4a92e1dbf526b
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1