4681b40500e4daccb816d8ddea5a934a7dc4603e3045c6a7af7e93510161e249 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4681b40500e4daccb816d8ddea5a934a7dc4603e3045c6a7af7e93510161e249
Size

328KB
Sample

230203-hlzcjsfe3t
MD5

542df5c77a38bd2994a8950b74edd375
SHA1

fb07b75fd174171580b37e12b907fabd94a37006
SHA256

4681b40500e4daccb816d8ddea5a934a7dc4603e3045c6a7af7e93510161e249
SHA512

5c474b54503d2043a4c3569ade7e750c6d962ac3a80beb56daf3bbf2229c3f2fee10427034220972588c2871853ca1340da901490204e7dcd51361764758c42c
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  4681b40500e4daccb816d8ddea5a934a7dc4603e3045c6a7af7e93510161e249
- Size
  
  328KB
- MD5
  
  542df5c77a38bd2994a8950b74edd375
- SHA1
  
  fb07b75fd174171580b37e12b907fabd94a37006
- SHA256
  
  4681b40500e4daccb816d8ddea5a934a7dc4603e3045c6a7af7e93510161e249
- SHA512
  
  5c474b54503d2043a4c3569ade7e750c6d962ac3a80beb56daf3bbf2229c3f2fee10427034220972588c2871853ca1340da901490204e7dcd51361764758c42c
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1