c2c91507fdc2718ea83d4337a3ae3149442d2f2e94a0c36ec9561b62dbf584cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2c91507fdc2718ea83d4337a3ae3149442d2f2e94a0c36ec9561b62dbf584cf
Size

326KB
Sample

221102-qzcppshbg7
MD5

cdb5c5f990d8d6c89496e0761146eef7
SHA1

2759016077168878e9508a420d8cb4dc33bcc3b8
SHA256

c2c91507fdc2718ea83d4337a3ae3149442d2f2e94a0c36ec9561b62dbf584cf
SHA512

0aa7acaa7f44aa90a90f9922a464e71cfb8e49d6c653496a964f162741315d3afe126008e403f78161678e2b7ee8d63db5332b8d2e39d50fa1ed90eb64d1b4a0
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  c2c91507fdc2718ea83d4337a3ae3149442d2f2e94a0c36ec9561b62dbf584cf
- Size
  
  326KB
- MD5
  
  cdb5c5f990d8d6c89496e0761146eef7
- SHA1
  
  2759016077168878e9508a420d8cb4dc33bcc3b8
- SHA256
  
  c2c91507fdc2718ea83d4337a3ae3149442d2f2e94a0c36ec9561b62dbf584cf
- SHA512
  
  0aa7acaa7f44aa90a90f9922a464e71cfb8e49d6c653496a964f162741315d3afe126008e403f78161678e2b7ee8d63db5332b8d2e39d50fa1ed90eb64d1b4a0
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1