6334f9b75722e7d299d94496d354cbf274e811ebce1b9cab9013cf57c1d6800d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6334f9b75722e7d299d94496d354cbf274e811ebce1b9cab9013cf57c1d6800d
Size

323KB
Sample

221101-kfbemsaehn
MD5

9101e767e0d4cc945525f9d0a196ff1d
SHA1

ef1d294af44497c7eeb8c8161b37669f3ae0da9f
SHA256

6334f9b75722e7d299d94496d354cbf274e811ebce1b9cab9013cf57c1d6800d
SHA512

9021e1db9bc0d2073816652537de16903384bebb41480df9aa982f5efa78d7761f86be82bf6d7c0f238e43dfbbd016dfe3766424273979ea6228215aa708e28c
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  6334f9b75722e7d299d94496d354cbf274e811ebce1b9cab9013cf57c1d6800d
- Size
  
  323KB
- MD5
  
  9101e767e0d4cc945525f9d0a196ff1d
- SHA1
  
  ef1d294af44497c7eeb8c8161b37669f3ae0da9f
- SHA256
  
  6334f9b75722e7d299d94496d354cbf274e811ebce1b9cab9013cf57c1d6800d
- SHA512
  
  9021e1db9bc0d2073816652537de16903384bebb41480df9aa982f5efa78d7761f86be82bf6d7c0f238e43dfbbd016dfe3766424273979ea6228215aa708e28c
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1