e3fcaa3845c056e9ccde537606211f086b9a867208840b622d54e431f9aeafaf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3fcaa3845c056e9ccde537606211f086b9a867208840b622d54e431f9aeafaf
Size

324KB
Sample

221101-nerxsacccr
MD5

a3b9971d474d125bc3a57ed98fc39d45
SHA1

3c459d7b6c7101dbb895b337d7ebc561fa536783
SHA256

e3fcaa3845c056e9ccde537606211f086b9a867208840b622d54e431f9aeafaf
SHA512

dd5e91aa411a75e9f3ab331454fe49d0eca96b7b86a8283e9105326644aaa228979b9d70b188a169b4e9d0870ca2fa20dbcc829c42d45e850682c3571a14518e
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  e3fcaa3845c056e9ccde537606211f086b9a867208840b622d54e431f9aeafaf
- Size
  
  324KB
- MD5
  
  a3b9971d474d125bc3a57ed98fc39d45
- SHA1
  
  3c459d7b6c7101dbb895b337d7ebc561fa536783
- SHA256
  
  e3fcaa3845c056e9ccde537606211f086b9a867208840b622d54e431f9aeafaf
- SHA512
  
  dd5e91aa411a75e9f3ab331454fe49d0eca96b7b86a8283e9105326644aaa228979b9d70b188a169b4e9d0870ca2fa20dbcc829c42d45e850682c3571a14518e
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1