29759c0d973445940e5fd138b65b8080d17423931bb98859efe3b3c5592a0852 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29759c0d973445940e5fd138b65b8080d17423931bb98859efe3b3c5592a0852
Size

324KB
Sample

221101-nyplrsceej
MD5

c9ecb6e05c526964c63b566c1b4dd42c
SHA1

7de34b301d9b23ffb63d7a705b51160b07b4911b
SHA256

29759c0d973445940e5fd138b65b8080d17423931bb98859efe3b3c5592a0852
SHA512

70d2d3731e21228d3e055ee4ec9dc4d5d174784e899515e0abe81c3cf8e743fbbc9e6055bc8776f74bc6d6b13bc4c04b56f1346f23a69c0b998f67c085556a51
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  29759c0d973445940e5fd138b65b8080d17423931bb98859efe3b3c5592a0852
- Size
  
  324KB
- MD5
  
  c9ecb6e05c526964c63b566c1b4dd42c
- SHA1
  
  7de34b301d9b23ffb63d7a705b51160b07b4911b
- SHA256
  
  29759c0d973445940e5fd138b65b8080d17423931bb98859efe3b3c5592a0852
- SHA512
  
  70d2d3731e21228d3e055ee4ec9dc4d5d174784e899515e0abe81c3cf8e743fbbc9e6055bc8776f74bc6d6b13bc4c04b56f1346f23a69c0b998f67c085556a51
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1