fea635b1609455e83f8fb263c7237fa1b181c4bdc1dc43ea07fb8bc79294ee38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fea635b1609455e83f8fb263c7237fa1b181c4bdc1dc43ea07fb8bc79294ee38
Size

327KB
Sample

221102-xndaesdehn
MD5

595cde0de5ee2fb2746131bd32eff0ef
SHA1

37d81ede0538820f4e838da0b41521c59b2858a3
SHA256

fea635b1609455e83f8fb263c7237fa1b181c4bdc1dc43ea07fb8bc79294ee38
SHA512

6bc4cd3aff2b3e599b30c46f84f0abf2af3cb9f2df842af3a9ca32ec3c6cc51ec0f67ee9bf1f6f247fa0221ccb47971ce9fd919ef058bac1db5563a2c4f1c841
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  fea635b1609455e83f8fb263c7237fa1b181c4bdc1dc43ea07fb8bc79294ee38
- Size
  
  327KB
- MD5
  
  595cde0de5ee2fb2746131bd32eff0ef
- SHA1
  
  37d81ede0538820f4e838da0b41521c59b2858a3
- SHA256
  
  fea635b1609455e83f8fb263c7237fa1b181c4bdc1dc43ea07fb8bc79294ee38
- SHA512
  
  6bc4cd3aff2b3e599b30c46f84f0abf2af3cb9f2df842af3a9ca32ec3c6cc51ec0f67ee9bf1f6f247fa0221ccb47971ce9fd919ef058bac1db5563a2c4f1c841
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1