64b3c67d0ab6937f5346e52933c576ac8f49c0dfb8db7927257ad97c15056015 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64b3c67d0ab6937f5346e52933c576ac8f49c0dfb8db7927257ad97c15056015
Size

326KB
Sample

221102-csfacsgfd7
MD5

c1f6516a9381648f2c9293dd18eeff90
SHA1

e7c8b9fabd4b1752bd21ab9c7cff54e1ed93e0f5
SHA256

64b3c67d0ab6937f5346e52933c576ac8f49c0dfb8db7927257ad97c15056015
SHA512

1277991d9d87d75dff556a640a0c60745d65f5107b4cca62e2b65b0c1dacb3bcbb9ece8f41917e63dccdccb03a7fa2c441cb36200d3c84de3b381d5349429537
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  64b3c67d0ab6937f5346e52933c576ac8f49c0dfb8db7927257ad97c15056015
- Size
  
  326KB
- MD5
  
  c1f6516a9381648f2c9293dd18eeff90
- SHA1
  
  e7c8b9fabd4b1752bd21ab9c7cff54e1ed93e0f5
- SHA256
  
  64b3c67d0ab6937f5346e52933c576ac8f49c0dfb8db7927257ad97c15056015
- SHA512
  
  1277991d9d87d75dff556a640a0c60745d65f5107b4cca62e2b65b0c1dacb3bcbb9ece8f41917e63dccdccb03a7fa2c441cb36200d3c84de3b381d5349429537
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1