0e79960d2e83b42b6c6affad696d443b6642a11eb8aefed807fd8bd9b557f7eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e79960d2e83b42b6c6affad696d443b6642a11eb8aefed807fd8bd9b557f7eb
Size

328KB
Sample

230203-gvaj4sbg43
MD5

31e7349f708183eaacd56269eb58ef74
SHA1

1f99ba792359821799e39233b3593cc8676a4cea
SHA256

0e79960d2e83b42b6c6affad696d443b6642a11eb8aefed807fd8bd9b557f7eb
SHA512

bcde7580c28f7c84b30608fe288b3545a440b5633137ce1f7074f49216c07875dfb866cbabe71e68ab5821ba0509e9d637f46c2baa9b217ff8e861dee8461176
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  0e79960d2e83b42b6c6affad696d443b6642a11eb8aefed807fd8bd9b557f7eb
- Size
  
  328KB
- MD5
  
  31e7349f708183eaacd56269eb58ef74
- SHA1
  
  1f99ba792359821799e39233b3593cc8676a4cea
- SHA256
  
  0e79960d2e83b42b6c6affad696d443b6642a11eb8aefed807fd8bd9b557f7eb
- SHA512
  
  bcde7580c28f7c84b30608fe288b3545a440b5633137ce1f7074f49216c07875dfb866cbabe71e68ab5821ba0509e9d637f46c2baa9b217ff8e861dee8461176
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1