dea4ad4c512012e84f5f320d044e03d3cbdddbc1bdd716c63bdb35cd5ad0d899 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dea4ad4c512012e84f5f320d044e03d3cbdddbc1bdd716c63bdb35cd5ad0d899
Size

326KB
Sample

221102-myw56scabr
MD5

c347fe2ce8875d4834175c6a5485d703
SHA1

b06d9aeaf0f25082cee0186b227ac9faba3cd222
SHA256

dea4ad4c512012e84f5f320d044e03d3cbdddbc1bdd716c63bdb35cd5ad0d899
SHA512

c46e6d880232a91375f7f48fe4ea589d17949c75996d6a7fa46965ffbded57f5cb791f3ddf1ad48fa2f1bb45f748c6b362e6235f8eb7245f38dfdb140d85abea
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  dea4ad4c512012e84f5f320d044e03d3cbdddbc1bdd716c63bdb35cd5ad0d899
- Size
  
  326KB
- MD5
  
  c347fe2ce8875d4834175c6a5485d703
- SHA1
  
  b06d9aeaf0f25082cee0186b227ac9faba3cd222
- SHA256
  
  dea4ad4c512012e84f5f320d044e03d3cbdddbc1bdd716c63bdb35cd5ad0d899
- SHA512
  
  c46e6d880232a91375f7f48fe4ea589d17949c75996d6a7fa46965ffbded57f5cb791f3ddf1ad48fa2f1bb45f748c6b362e6235f8eb7245f38dfdb140d85abea
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1