b3a5fcef9505c18f84da2c6cc7cf38ef15f9c7e1cce3e83578d8d8532448ccd7 | Triage

Sharing

General

Target

b3a5fcef9505c18f84da2c6cc7cf38ef15f9c7e1cce3e83578d8d8532448ccd7
Size

325KB
Sample

221101-tqbyladcg8
MD5

ca6bbbfccb97dc915539f7dd6a495769
SHA1

0c43f5c4caf6c36e8a69c916f61dcd762fb1ecb3
SHA256

b3a5fcef9505c18f84da2c6cc7cf38ef15f9c7e1cce3e83578d8d8532448ccd7
SHA512

06934e73e3e7c0f9f9b5764e11c307dd954c22426abc9f1a0118cb3c75e3e5aded97afe5f8199fce41cb1ced3d414058d3dfd03c1242dd33facb3dcf624dac84
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  b3a5fcef9505c18f84da2c6cc7cf38ef15f9c7e1cce3e83578d8d8532448ccd7
- Size
  
  325KB
- MD5
  
  ca6bbbfccb97dc915539f7dd6a495769
- SHA1
  
  0c43f5c4caf6c36e8a69c916f61dcd762fb1ecb3
- SHA256
  
  b3a5fcef9505c18f84da2c6cc7cf38ef15f9c7e1cce3e83578d8d8532448ccd7
- SHA512
  
  06934e73e3e7c0f9f9b5764e11c307dd954c22426abc9f1a0118cb3c75e3e5aded97afe5f8199fce41cb1ced3d414058d3dfd03c1242dd33facb3dcf624dac84
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1