2bbb323aab558c9f06d4ad1e6c2bafc14d3355cac1b36bf744c6f989f4f93ae5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bbb323aab558c9f06d4ad1e6c2bafc14d3355cac1b36bf744c6f989f4f93ae5
Size

323KB
Sample

221101-kr464aaggm
MD5

90fd3629130854a082813e92ebeda9e1
SHA1

b5ed77394e80d9835124ad0005f5cfd7ce213d2b
SHA256

2bbb323aab558c9f06d4ad1e6c2bafc14d3355cac1b36bf744c6f989f4f93ae5
SHA512

2648458403fd514bb1a0c9a491299b430c23cc27156ae5c79ebe6c82905745200fb0057353af3b0d9486497618c916f66a8c3bd1455b5badee95770d3faea425
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  2bbb323aab558c9f06d4ad1e6c2bafc14d3355cac1b36bf744c6f989f4f93ae5
- Size
  
  323KB
- MD5
  
  90fd3629130854a082813e92ebeda9e1
- SHA1
  
  b5ed77394e80d9835124ad0005f5cfd7ce213d2b
- SHA256
  
  2bbb323aab558c9f06d4ad1e6c2bafc14d3355cac1b36bf744c6f989f4f93ae5
- SHA512
  
  2648458403fd514bb1a0c9a491299b430c23cc27156ae5c79ebe6c82905745200fb0057353af3b0d9486497618c916f66a8c3bd1455b5badee95770d3faea425
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1