caf8e496d6f79599f876cded5ba78df9f90cf3ba839915d5d4a894229612da0f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

caf8e496d6f79599f876cded5ba78df9f90cf3ba839915d5d4a894229612da0f
Size

324KB
Sample

221101-q3f7asdcdp
MD5

fe5f115f45262241404c0560d7716878
SHA1

7449dfb5d1f0b4f3e42e5f1d75cb35943404b7fc
SHA256

caf8e496d6f79599f876cded5ba78df9f90cf3ba839915d5d4a894229612da0f
SHA512

8dd503467747a3f20566d5810e24c7f019abc01a095329112baeacfb03e357c6ba25a4eeab0339a451e8fae2fb74dea88ef4e36ef0b45c879505fe50178e1f77
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  caf8e496d6f79599f876cded5ba78df9f90cf3ba839915d5d4a894229612da0f
- Size
  
  324KB
- MD5
  
  fe5f115f45262241404c0560d7716878
- SHA1
  
  7449dfb5d1f0b4f3e42e5f1d75cb35943404b7fc
- SHA256
  
  caf8e496d6f79599f876cded5ba78df9f90cf3ba839915d5d4a894229612da0f
- SHA512
  
  8dd503467747a3f20566d5810e24c7f019abc01a095329112baeacfb03e357c6ba25a4eeab0339a451e8fae2fb74dea88ef4e36ef0b45c879505fe50178e1f77
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1