4b96b14376a873e5fc8f816431bfd38691ee5f5f8ba9ee3f672486929423abec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b96b14376a873e5fc8f816431bfd38691ee5f5f8ba9ee3f672486929423abec
Size

328KB
Sample

221103-3wzraabacj
MD5

efa3dbecb666a8ae66129f912b566f6c
SHA1

b9735ac4e1c2694ed791a3bdac32eac3d4784067
SHA256

4b96b14376a873e5fc8f816431bfd38691ee5f5f8ba9ee3f672486929423abec
SHA512

c60005c2dd23e98d73e0c73460b1c9030acf84e5ed74406da48538e91d899f972c674b631144257b7b2cf32e9fa5c08f923e1c8adc92943f56af0fa1f9899cd3
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  4b96b14376a873e5fc8f816431bfd38691ee5f5f8ba9ee3f672486929423abec
- Size
  
  328KB
- MD5
  
  efa3dbecb666a8ae66129f912b566f6c
- SHA1
  
  b9735ac4e1c2694ed791a3bdac32eac3d4784067
- SHA256
  
  4b96b14376a873e5fc8f816431bfd38691ee5f5f8ba9ee3f672486929423abec
- SHA512
  
  c60005c2dd23e98d73e0c73460b1c9030acf84e5ed74406da48538e91d899f972c674b631144257b7b2cf32e9fa5c08f923e1c8adc92943f56af0fa1f9899cd3
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1