02c1d149318f19670fb43eafd3b559cad52a29bd1d217f18c8108e083e4044b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02c1d149318f19670fb43eafd3b559cad52a29bd1d217f18c8108e083e4044b8
Size

324KB
Sample

221101-pt1c5sbhg7
MD5

a8cc8cb1b980f25b26d868df985a0186
SHA1

0e4ebf06c9de19b544920d8eca7d68a51924845b
SHA256

02c1d149318f19670fb43eafd3b559cad52a29bd1d217f18c8108e083e4044b8
SHA512

2d86bf72967aef4601f5335af9a9d2bf92fa2542b59b5526ba8919f7e06a0f63eddcd0459f6033bd0abf9f80453a56266baba8f5fef29734e8be8b500c9720b0
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  02c1d149318f19670fb43eafd3b559cad52a29bd1d217f18c8108e083e4044b8
- Size
  
  324KB
- MD5
  
  a8cc8cb1b980f25b26d868df985a0186
- SHA1
  
  0e4ebf06c9de19b544920d8eca7d68a51924845b
- SHA256
  
  02c1d149318f19670fb43eafd3b559cad52a29bd1d217f18c8108e083e4044b8
- SHA512
  
  2d86bf72967aef4601f5335af9a9d2bf92fa2542b59b5526ba8919f7e06a0f63eddcd0459f6033bd0abf9f80453a56266baba8f5fef29734e8be8b500c9720b0
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1