652be8d8d8c368c87b7d8ef9b198558e08ca1b103fe151b09827599bbc167ef9 | Triage

Sharing

General

Target

652be8d8d8c368c87b7d8ef9b198558e08ca1b103fe151b09827599bbc167ef9
Size

328KB
Sample

221105-tc11kaagcn
MD5

9189e45c0be3d392c08d337664fa653c
SHA1

a1b5fb6d804b3e93bc8e6eb2f84b4fe3eb726b0a
SHA256

652be8d8d8c368c87b7d8ef9b198558e08ca1b103fe151b09827599bbc167ef9
SHA512

ad11b5ef658c22b47d611d4617b86b987a9626653199ef5a3465710dc63059f47bf65fe962954d2453fc90f3855e991f61c20dac7a5e4f23ceeb2be66a1faf31
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  652be8d8d8c368c87b7d8ef9b198558e08ca1b103fe151b09827599bbc167ef9
- Size
  
  328KB
- MD5
  
  9189e45c0be3d392c08d337664fa653c
- SHA1
  
  a1b5fb6d804b3e93bc8e6eb2f84b4fe3eb726b0a
- SHA256
  
  652be8d8d8c368c87b7d8ef9b198558e08ca1b103fe151b09827599bbc167ef9
- SHA512
  
  ad11b5ef658c22b47d611d4617b86b987a9626653199ef5a3465710dc63059f47bf65fe962954d2453fc90f3855e991f61c20dac7a5e4f23ceeb2be66a1faf31
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1