e152eb0c75f0f0c1bd741592b8ac73d39b7f812078ab441514b2a81a1aeebd34 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e152eb0c75f0f0c1bd741592b8ac73d39b7f812078ab441514b2a81a1aeebd34
Size

325KB
Sample

221102-ad6snagaf3
MD5

e296580b0409e0ee29fe9e1746a36763
SHA1

e48c3bdb012e6de73065d1f7a40077497207d2c8
SHA256

e152eb0c75f0f0c1bd741592b8ac73d39b7f812078ab441514b2a81a1aeebd34
SHA512

a183d918547d09ebb39a151805dff6de464b8aca2769707729e43d507b4d26e1fce831b660955f1d1a6ab598f80cf4f0ac2f44bdf12296af5a721aaff2ecee9d
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  e152eb0c75f0f0c1bd741592b8ac73d39b7f812078ab441514b2a81a1aeebd34
- Size
  
  325KB
- MD5
  
  e296580b0409e0ee29fe9e1746a36763
- SHA1
  
  e48c3bdb012e6de73065d1f7a40077497207d2c8
- SHA256
  
  e152eb0c75f0f0c1bd741592b8ac73d39b7f812078ab441514b2a81a1aeebd34
- SHA512
  
  a183d918547d09ebb39a151805dff6de464b8aca2769707729e43d507b4d26e1fce831b660955f1d1a6ab598f80cf4f0ac2f44bdf12296af5a721aaff2ecee9d
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1