398489f6b28ae27c7b4ab108033f8f1de1ea1a48792c3fa0ef0dc011284c1373 | Triage

Sharing

General

Target

398489f6b28ae27c7b4ab108033f8f1de1ea1a48792c3fa0ef0dc011284c1373
Size

328KB
Sample

230203-d4g4rsad89
MD5

3faa64bd319515ccffc8f99c8a2f828e
SHA1

2ddacad97a1b79e2e471b61783b548f653b785e1
SHA256

398489f6b28ae27c7b4ab108033f8f1de1ea1a48792c3fa0ef0dc011284c1373
SHA512

9812b79d22eeb7cd3af4f02a249a03bfa1f93f8546f111c8579b883d564adfdec8206348e2078439e07adcc45a2f2a90094f4377cae862412e367218470b9333
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  398489f6b28ae27c7b4ab108033f8f1de1ea1a48792c3fa0ef0dc011284c1373
- Size
  
  328KB
- MD5
  
  3faa64bd319515ccffc8f99c8a2f828e
- SHA1
  
  2ddacad97a1b79e2e471b61783b548f653b785e1
- SHA256
  
  398489f6b28ae27c7b4ab108033f8f1de1ea1a48792c3fa0ef0dc011284c1373
- SHA512
  
  9812b79d22eeb7cd3af4f02a249a03bfa1f93f8546f111c8579b883d564adfdec8206348e2078439e07adcc45a2f2a90094f4377cae862412e367218470b9333
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1