e5088b882a74d2e1c1d6c67f86abd09f1c761bd518e1f1942fa9786a52cf1368 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e5088b882a74d2e1c1d6c67f86abd09f1c761bd518e1f1942fa9786a52cf1368
Size

326KB
Sample

221102-kfrrmabcar
MD5

5cd05b08a47e15a5b3d67e1a5a7a63c0
SHA1

b5912a04ba5098a898efe15076fb11757b31c9ff
SHA256

e5088b882a74d2e1c1d6c67f86abd09f1c761bd518e1f1942fa9786a52cf1368
SHA512

619e73919e828d6ef865d89a23f8a82ce3ab285bca1eb210e75c48c83f83da80b2c7b50574ef666d135d27e260114d9a8ee56944cd52ab6b301c116877533fd3
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  e5088b882a74d2e1c1d6c67f86abd09f1c761bd518e1f1942fa9786a52cf1368
- Size
  
  326KB
- MD5
  
  5cd05b08a47e15a5b3d67e1a5a7a63c0
- SHA1
  
  b5912a04ba5098a898efe15076fb11757b31c9ff
- SHA256
  
  e5088b882a74d2e1c1d6c67f86abd09f1c761bd518e1f1942fa9786a52cf1368
- SHA512
  
  619e73919e828d6ef865d89a23f8a82ce3ab285bca1eb210e75c48c83f83da80b2c7b50574ef666d135d27e260114d9a8ee56944cd52ab6b301c116877533fd3
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1