d81fa6772ea42800b437f6a2bc86166ad82bf3bc1bcaf2936db60c1604c7840a | Triage

Sharing

General

Target

d81fa6772ea42800b437f6a2bc86166ad82bf3bc1bcaf2936db60c1604c7840a
Size

324KB
Sample

221101-qve92adbhn
MD5

cc08814b254e6d5375a2749ef4cf9699
SHA1

37629e64e95280a11f2a1578103640d327e1501d
SHA256

d81fa6772ea42800b437f6a2bc86166ad82bf3bc1bcaf2936db60c1604c7840a
SHA512

aeb1fc0ebbe9780dfe6b935318dd9ed7227bdf66954e1c534c435ca45e645cd3920ee0ea383137a4e68a19a2040ecd10e6a9e4e38927465a47b12af1ba4bd0c2
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  d81fa6772ea42800b437f6a2bc86166ad82bf3bc1bcaf2936db60c1604c7840a
- Size
  
  324KB
- MD5
  
  cc08814b254e6d5375a2749ef4cf9699
- SHA1
  
  37629e64e95280a11f2a1578103640d327e1501d
- SHA256
  
  d81fa6772ea42800b437f6a2bc86166ad82bf3bc1bcaf2936db60c1604c7840a
- SHA512
  
  aeb1fc0ebbe9780dfe6b935318dd9ed7227bdf66954e1c534c435ca45e645cd3920ee0ea383137a4e68a19a2040ecd10e6a9e4e38927465a47b12af1ba4bd0c2
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1