5a486943ea3594ae209e49f763b5a3b40809d90bb0c50f7b097e052a4c3e7018 | Triage

Sharing

General

Target

5a486943ea3594ae209e49f763b5a3b40809d90bb0c50f7b097e052a4c3e7018
Size

324KB
Sample

221101-prennabhe9
MD5

8c0443989ba158409c07a95c3df207ce
SHA1

25c6a05869a688bbf66ed19c8afba06d58b2a5fe
SHA256

5a486943ea3594ae209e49f763b5a3b40809d90bb0c50f7b097e052a4c3e7018
SHA512

281fa47c45a91d9654ca90e9729761d7de04722d81b821749ef9e683238262040584f7848b7f5a6af7ba6ecb17ab6a476159ef2ce3ae08347dc1c6df1a232be7
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  5a486943ea3594ae209e49f763b5a3b40809d90bb0c50f7b097e052a4c3e7018
- Size
  
  324KB
- MD5
  
  8c0443989ba158409c07a95c3df207ce
- SHA1
  
  25c6a05869a688bbf66ed19c8afba06d58b2a5fe
- SHA256
  
  5a486943ea3594ae209e49f763b5a3b40809d90bb0c50f7b097e052a4c3e7018
- SHA512
  
  281fa47c45a91d9654ca90e9729761d7de04722d81b821749ef9e683238262040584f7848b7f5a6af7ba6ecb17ab6a476159ef2ce3ae08347dc1c6df1a232be7
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1