2fec366ec3e830c49a0a0b448bb30f1e0c9901ed19435933e6a73885e0451fb7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2fec366ec3e830c49a0a0b448bb30f1e0c9901ed19435933e6a73885e0451fb7
Size

324KB
Sample

221101-qh8e2sdahr
MD5

7298628a627002527bb04a5012c950d6
SHA1

3d33bca847448178d80892678d0613d91d4d9196
SHA256

2fec366ec3e830c49a0a0b448bb30f1e0c9901ed19435933e6a73885e0451fb7
SHA512

72a812e24c86cbd8d19ef35257a41a0c9718fc1ded68efab485383a75b2f3ee146f2109fad605f598b3c5ee451eba5ceae9dd0b11c9f5931329bf0578d650e39
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  2fec366ec3e830c49a0a0b448bb30f1e0c9901ed19435933e6a73885e0451fb7
- Size
  
  324KB
- MD5
  
  7298628a627002527bb04a5012c950d6
- SHA1
  
  3d33bca847448178d80892678d0613d91d4d9196
- SHA256
  
  2fec366ec3e830c49a0a0b448bb30f1e0c9901ed19435933e6a73885e0451fb7
- SHA512
  
  72a812e24c86cbd8d19ef35257a41a0c9718fc1ded68efab485383a75b2f3ee146f2109fad605f598b3c5ee451eba5ceae9dd0b11c9f5931329bf0578d650e39
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1