e2aa458ac04ca4b72a6ec0b943658e286eaaaab2ef2494161a6e18fe60c98a43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2aa458ac04ca4b72a6ec0b943658e286eaaaab2ef2494161a6e18fe60c98a43
Size

324KB
Sample

221101-pe43sabge7
MD5

6959e2a8637bcc62155cd22abe7cb403
SHA1

6c57a0821f391f23d06de2913e4dda0a2bf00811
SHA256

e2aa458ac04ca4b72a6ec0b943658e286eaaaab2ef2494161a6e18fe60c98a43
SHA512

9d3aa20c9b165b4c45fa5f6b2b9d73c3c2600be9c133a352244c7744ced99b8bda36ef78193cac49ae38183697d70482c66c6f06d7213ec749bbf3534cc1a9f1
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  e2aa458ac04ca4b72a6ec0b943658e286eaaaab2ef2494161a6e18fe60c98a43
- Size
  
  324KB
- MD5
  
  6959e2a8637bcc62155cd22abe7cb403
- SHA1
  
  6c57a0821f391f23d06de2913e4dda0a2bf00811
- SHA256
  
  e2aa458ac04ca4b72a6ec0b943658e286eaaaab2ef2494161a6e18fe60c98a43
- SHA512
  
  9d3aa20c9b165b4c45fa5f6b2b9d73c3c2600be9c133a352244c7744ced99b8bda36ef78193cac49ae38183697d70482c66c6f06d7213ec749bbf3534cc1a9f1
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1