975a48a34b5ace74ddcdbd251f1aa36d3a10d9438321d8f0de7e98206f1e9adc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

975a48a34b5ace74ddcdbd251f1aa36d3a10d9438321d8f0de7e98206f1e9adc
Size

327KB
Sample

221102-tz1y3sacc4
MD5

5ad188c340f67ab688bd71ca51ac9634
SHA1

81f68f48c6671bfea6fe0aade140294dae77431c
SHA256

975a48a34b5ace74ddcdbd251f1aa36d3a10d9438321d8f0de7e98206f1e9adc
SHA512

d9de29ef72ae40dd83fd0c6d011a2f3008ec814ca1e4a9dae786cc079cc5f66b269abe431836c1af3f19eb99085003312829d643bd49fb7aee99b1bfcb693376
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  975a48a34b5ace74ddcdbd251f1aa36d3a10d9438321d8f0de7e98206f1e9adc
- Size
  
  327KB
- MD5
  
  5ad188c340f67ab688bd71ca51ac9634
- SHA1
  
  81f68f48c6671bfea6fe0aade140294dae77431c
- SHA256
  
  975a48a34b5ace74ddcdbd251f1aa36d3a10d9438321d8f0de7e98206f1e9adc
- SHA512
  
  d9de29ef72ae40dd83fd0c6d011a2f3008ec814ca1e4a9dae786cc079cc5f66b269abe431836c1af3f19eb99085003312829d643bd49fb7aee99b1bfcb693376
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1