d6a8f5ed5f6f7c43f78f96ae4545bbb960de3ba39822af6337b6c08e1abd20f4 | Triage

Sharing

General

Target

d6a8f5ed5f6f7c43f78f96ae4545bbb960de3ba39822af6337b6c08e1abd20f4
Size

388KB
Sample

221204-kshdqahb61
MD5

7096f95f174ba9b0f0592b78c307f13d
SHA1

80d0606a9937d14dddebd5034fce98750780ba68
SHA256

d6a8f5ed5f6f7c43f78f96ae4545bbb960de3ba39822af6337b6c08e1abd20f4
SHA512

497435d2e16f9dad2dc2e78898ffdb04d62e68d2ce5dfb9b3ac4906811652ece049d8065206dc748aa073994a10f30b64456fb643e5674218578c733230e6baf
SSDEEP

3072:lRMiMDcyj5IFVwAZlwys9ldN/i4+0ZhuW+mP34s5SGr+culS9F9xrj69:lRMiE79KwAZlVs9/smu2AVuKS9FH6

Score

5^/10

Malware Config

Targets

- Target
  
  d6a8f5ed5f6f7c43f78f96ae4545bbb960de3ba39822af6337b6c08e1abd20f4
- Size
  
  388KB
- MD5
  
  7096f95f174ba9b0f0592b78c307f13d
- SHA1
  
  80d0606a9937d14dddebd5034fce98750780ba68
- SHA256
  
  d6a8f5ed5f6f7c43f78f96ae4545bbb960de3ba39822af6337b6c08e1abd20f4
- SHA512
  
  497435d2e16f9dad2dc2e78898ffdb04d62e68d2ce5dfb9b3ac4906811652ece049d8065206dc748aa073994a10f30b64456fb643e5674218578c733230e6baf
- SSDEEP
  
  3072:lRMiMDcyj5IFVwAZlwys9ldN/i4+0ZhuW+mP34s5SGr+culS9F9xrj69:lRMiE79KwAZlVs9/smu2AVuKS9FH6
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2