678c3ce6977650392a9d8f7e83d91a44af117e2e87ad87888ceb9f2814b7fcb9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

678c3ce6977650392a9d8f7e83d91a44af117e2e87ad87888ceb9f2814b7fcb9
Size

324KB
Sample

221101-r3rhpscgb2
MD5

fb918148ebaebe86f7cf0fb199e14e0b
SHA1

6023b1f1fec3f085a5299ce2e573900d5fc90444
SHA256

678c3ce6977650392a9d8f7e83d91a44af117e2e87ad87888ceb9f2814b7fcb9
SHA512

7c25bafbda5b7933c208aac46894c65a4fafa612dbdeefef5b65e394f4fd27eab16822bc92ee5cea14840bf6c2715d69a719ddfc9d817451cc4e0204406f60c5
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  678c3ce6977650392a9d8f7e83d91a44af117e2e87ad87888ceb9f2814b7fcb9
- Size
  
  324KB
- MD5
  
  fb918148ebaebe86f7cf0fb199e14e0b
- SHA1
  
  6023b1f1fec3f085a5299ce2e573900d5fc90444
- SHA256
  
  678c3ce6977650392a9d8f7e83d91a44af117e2e87ad87888ceb9f2814b7fcb9
- SHA512
  
  7c25bafbda5b7933c208aac46894c65a4fafa612dbdeefef5b65e394f4fd27eab16822bc92ee5cea14840bf6c2715d69a719ddfc9d817451cc4e0204406f60c5
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1