8a199727186688ae2b5cf9d26f977432e2d0b91d95a65319166c85526f5f27d6 | Triage

Sharing

General

Target

8a199727186688ae2b5cf9d26f977432e2d0b91d95a65319166c85526f5f27d6
Size

248KB
Sample

221128-dvkhjafb7s
MD5

99942b0de409839bac8f58064f5dc01d
SHA1

05b124b5f33a65ebb7489cdbcb55eee1692049f3
SHA256

8a199727186688ae2b5cf9d26f977432e2d0b91d95a65319166c85526f5f27d6
SHA512

175289dd65a2f427990c00d1a94c48e9725984e10dcd20cde80792d8093ab65296fceab7ac574d36c912bba914ec519890f0e13f65bbc644f9de4ffb99bd373f
SSDEEP

6144:pMltd+iBEBg22OO1bd8sj2P5Ufdm5mhU21xpZBVoQk:pMltd+iBEBJ2OO1hO5UVm5mU27pZDo

Score

8^/10

Malware Config

Targets

- Target
  
  8a199727186688ae2b5cf9d26f977432e2d0b91d95a65319166c85526f5f27d6
- Size
  
  248KB
- MD5
  
  99942b0de409839bac8f58064f5dc01d
- SHA1
  
  05b124b5f33a65ebb7489cdbcb55eee1692049f3
- SHA256
  
  8a199727186688ae2b5cf9d26f977432e2d0b91d95a65319166c85526f5f27d6
- SHA512
  
  175289dd65a2f427990c00d1a94c48e9725984e10dcd20cde80792d8093ab65296fceab7ac574d36c912bba914ec519890f0e13f65bbc644f9de4ffb99bd373f
- SSDEEP
  
  6144:pMltd+iBEBg22OO1bd8sj2P5Ufdm5mhU21xpZBVoQk:pMltd+iBEBJ2OO1hO5UVm5mU27pZDo
Score

8^/10
- Executes dropped EXE
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2