28cda6c750c5b87ab5d06ee01d22ea0c260849455c83803bd32cc56355f994fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28cda6c750c5b87ab5d06ee01d22ea0c260849455c83803bd32cc56355f994fd
Size

324KB
Sample

221101-n81f1sbgb7
MD5

abb00d2359c84ff2187bff3cc8249da5
SHA1

2e30eedb3084e3ca8d4cc31b359d4300d213638c
SHA256

28cda6c750c5b87ab5d06ee01d22ea0c260849455c83803bd32cc56355f994fd
SHA512

dd3f3f2f74bd04db7257de2d7eb6bcc0ccd4a357ee79ce2830667c9661da82ec197f39e727c4b0c408e8998e82027168f5c99480256e882d8eb592052235d3c6
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  28cda6c750c5b87ab5d06ee01d22ea0c260849455c83803bd32cc56355f994fd
- Size
  
  324KB
- MD5
  
  abb00d2359c84ff2187bff3cc8249da5
- SHA1
  
  2e30eedb3084e3ca8d4cc31b359d4300d213638c
- SHA256
  
  28cda6c750c5b87ab5d06ee01d22ea0c260849455c83803bd32cc56355f994fd
- SHA512
  
  dd3f3f2f74bd04db7257de2d7eb6bcc0ccd4a357ee79ce2830667c9661da82ec197f39e727c4b0c408e8998e82027168f5c99480256e882d8eb592052235d3c6
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1