5e6259b44a9bd71bfa23de11910ac94d336a6d4d988082afaf94d60065069352 | Triage

Sharing

General

Target

5e6259b44a9bd71bfa23de11910ac94d336a6d4d988082afaf94d60065069352
Size

1.0MB
Sample

221218-fe312sdf2t
MD5

bb233d4542a170be01c2d14cbb4a1d8a
SHA1

3f5b38c62ab67eb8612af6280294b524d94891cd
SHA256

5e6259b44a9bd71bfa23de11910ac94d336a6d4d988082afaf94d60065069352
SHA512

fac8a98136e7c244d34e2bb8afeb5365597994030ba266f0640808addd990f90395be95a3e518c7406c3872cdf333a054da9537ebd266511918011ce7a747bb3
SSDEEP

24576:8RVbNR6HnOroQkHwiO7bw0mFR+0rRLgLJ1sbw1vhY:kT8HjQkQ1nmFRryLJ1sGv

Score

8^/10

Malware Config

Targets

- Target
  
  5e6259b44a9bd71bfa23de11910ac94d336a6d4d988082afaf94d60065069352
- Size
  
  1.0MB
- MD5
  
  bb233d4542a170be01c2d14cbb4a1d8a
- SHA1
  
  3f5b38c62ab67eb8612af6280294b524d94891cd
- SHA256
  
  5e6259b44a9bd71bfa23de11910ac94d336a6d4d988082afaf94d60065069352
- SHA512
  
  fac8a98136e7c244d34e2bb8afeb5365597994030ba266f0640808addd990f90395be95a3e518c7406c3872cdf333a054da9537ebd266511918011ce7a747bb3
- SSDEEP
  
  24576:8RVbNR6HnOroQkHwiO7bw0mFR+0rRLgLJ1sbw1vhY:kT8HjQkQ1nmFRryLJ1sGv
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2