258b27dcb3ea929cd36d2354e2a43be6d3493aae8847b214161d203d3eeafe08 | Triage

Sharing

General

Target

258b27dcb3ea929cd36d2354e2a43be6d3493aae8847b214161d203d3eeafe08
Size

327KB
Sample

221103-nrzhdshgc2
MD5

2e816eebfae7c72121b21afd42ff2cee
SHA1

e78b557ae342027b5fcbe443be862fed7d2bad27
SHA256

258b27dcb3ea929cd36d2354e2a43be6d3493aae8847b214161d203d3eeafe08
SHA512

45b6b29742998394b2b5878dff1ccbeb9e998779d210e78801fa015a16d2236bdd368f4551ae5224232c4e3e5a2cc8e245e00c9301285096f41f171197bfb2cd
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  258b27dcb3ea929cd36d2354e2a43be6d3493aae8847b214161d203d3eeafe08
- Size
  
  327KB
- MD5
  
  2e816eebfae7c72121b21afd42ff2cee
- SHA1
  
  e78b557ae342027b5fcbe443be862fed7d2bad27
- SHA256
  
  258b27dcb3ea929cd36d2354e2a43be6d3493aae8847b214161d203d3eeafe08
- SHA512
  
  45b6b29742998394b2b5878dff1ccbeb9e998779d210e78801fa015a16d2236bdd368f4551ae5224232c4e3e5a2cc8e245e00c9301285096f41f171197bfb2cd
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1