2e86a1083f9dae627d96b0b8aea9dc0c5fe430b334fb9a2dced2a09134157a5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e86a1083f9dae627d96b0b8aea9dc0c5fe430b334fb9a2dced2a09134157a5c
Size

328KB
Sample

230203-efvkmaaf27
MD5

b6c521e37427bb64fbc70d286d4650a3
SHA1

0aadd00d14fc76d3122b6ce0797c217ee0168494
SHA256

2e86a1083f9dae627d96b0b8aea9dc0c5fe430b334fb9a2dced2a09134157a5c
SHA512

364861bd1ccf601f6960d79dd9a3ad036a63ba2a078de50cc080add5146c506747889246cfb43063f5105e64193f923942c14dbe2aad6e500d05baab910b2c86
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  2e86a1083f9dae627d96b0b8aea9dc0c5fe430b334fb9a2dced2a09134157a5c
- Size
  
  328KB
- MD5
  
  b6c521e37427bb64fbc70d286d4650a3
- SHA1
  
  0aadd00d14fc76d3122b6ce0797c217ee0168494
- SHA256
  
  2e86a1083f9dae627d96b0b8aea9dc0c5fe430b334fb9a2dced2a09134157a5c
- SHA512
  
  364861bd1ccf601f6960d79dd9a3ad036a63ba2a078de50cc080add5146c506747889246cfb43063f5105e64193f923942c14dbe2aad6e500d05baab910b2c86
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1