6d8261de1ebd7f0d739ce60f625b7e9d8cd4e913103cbe2618896010f76c6cbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d8261de1ebd7f0d739ce60f625b7e9d8cd4e913103cbe2618896010f76c6cbd
Size

324KB
Sample

221101-s9xhzaeaem
MD5

cf6b2ef830b1b4ba87a8368245d9bb2a
SHA1

bf46ea1cfdd2088526535fc880482df72529e29d
SHA256

6d8261de1ebd7f0d739ce60f625b7e9d8cd4e913103cbe2618896010f76c6cbd
SHA512

f31ae3fe8a3b62f926fdfb808fef141b81a95eb0b80088b2a59ab4c7505a54988c4d11aacaf573a1d72efe95870203d8ff43ce068ea058e06a015edbbbe8d49a
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  6d8261de1ebd7f0d739ce60f625b7e9d8cd4e913103cbe2618896010f76c6cbd
- Size
  
  324KB
- MD5
  
  cf6b2ef830b1b4ba87a8368245d9bb2a
- SHA1
  
  bf46ea1cfdd2088526535fc880482df72529e29d
- SHA256
  
  6d8261de1ebd7f0d739ce60f625b7e9d8cd4e913103cbe2618896010f76c6cbd
- SHA512
  
  f31ae3fe8a3b62f926fdfb808fef141b81a95eb0b80088b2a59ab4c7505a54988c4d11aacaf573a1d72efe95870203d8ff43ce068ea058e06a015edbbbe8d49a
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1