aa36ab39b81eb7cb5c93b1051ae9db490f8b4214a8073f67f0fd2ea0ea5bb9f4 | Triage

Sharing

General

Target

aa36ab39b81eb7cb5c93b1051ae9db490f8b4214a8073f67f0fd2ea0ea5bb9f4
Size

325KB
Sample

221102-bej6qagcf2
MD5

9415eafe41baa147f30d1b5d76fb97d2
SHA1

892ec3e5b6f6723e419254fafcc9b11e4e0cfb0c
SHA256

aa36ab39b81eb7cb5c93b1051ae9db490f8b4214a8073f67f0fd2ea0ea5bb9f4
SHA512

a5638b52390b5123f94c3a6e6743f188ebbecd3e298cda2a8bce7cdc9ddc4f69fdd138bf2a56e245eb393e66c583fcc8a8e4af83a82b0634f4f1fb55726c27e4
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  aa36ab39b81eb7cb5c93b1051ae9db490f8b4214a8073f67f0fd2ea0ea5bb9f4
- Size
  
  325KB
- MD5
  
  9415eafe41baa147f30d1b5d76fb97d2
- SHA1
  
  892ec3e5b6f6723e419254fafcc9b11e4e0cfb0c
- SHA256
  
  aa36ab39b81eb7cb5c93b1051ae9db490f8b4214a8073f67f0fd2ea0ea5bb9f4
- SHA512
  
  a5638b52390b5123f94c3a6e6743f188ebbecd3e298cda2a8bce7cdc9ddc4f69fdd138bf2a56e245eb393e66c583fcc8a8e4af83a82b0634f4f1fb55726c27e4
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1