d83c28bd03173bc28b8bdd1930abb30270119950c731cf91866e5eac5d06d887 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d83c28bd03173bc28b8bdd1930abb30270119950c731cf91866e5eac5d06d887
Size

326KB
Sample

230202-vsazracf58
MD5

5c12ee91b84dd038f7331b3fab16142a
SHA1

e811ba4a099e9d9e1b6dbbebf588e1b8f22c4826
SHA256

d83c28bd03173bc28b8bdd1930abb30270119950c731cf91866e5eac5d06d887
SHA512

23d3046a655f20a6e5e0a650f9a2f0b4439c0857aa435442460271e043c114791bbc23c741c8782b1fbd493dd32e3ca44717d05a8bfb742f3fdd0ce03f4115e9
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  d83c28bd03173bc28b8bdd1930abb30270119950c731cf91866e5eac5d06d887
- Size
  
  326KB
- MD5
  
  5c12ee91b84dd038f7331b3fab16142a
- SHA1
  
  e811ba4a099e9d9e1b6dbbebf588e1b8f22c4826
- SHA256
  
  d83c28bd03173bc28b8bdd1930abb30270119950c731cf91866e5eac5d06d887
- SHA512
  
  23d3046a655f20a6e5e0a650f9a2f0b4439c0857aa435442460271e043c114791bbc23c741c8782b1fbd493dd32e3ca44717d05a8bfb742f3fdd0ce03f4115e9
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1