c1d355029858fe03442e184aa08f8f1bfe3f3a4eeb0405301c0566e44090e930 | Triage

Sharing

General

Target

c1d355029858fe03442e184aa08f8f1bfe3f3a4eeb0405301c0566e44090e930
Size

328KB
Sample

230203-hyxdqacd49
MD5

c546de3fefa38c9255829684d5b030a4
SHA1

6b1e7a99021ff171d7299c956af426c406e1f461
SHA256

c1d355029858fe03442e184aa08f8f1bfe3f3a4eeb0405301c0566e44090e930
SHA512

3f1dd437cee84037717eca91e41e24aacdf15a89bab2cd85eddae3204e680181692c53b9b32906496665c2d82903145a3823d293e273160a8250128d77eb1702
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  c1d355029858fe03442e184aa08f8f1bfe3f3a4eeb0405301c0566e44090e930
- Size
  
  328KB
- MD5
  
  c546de3fefa38c9255829684d5b030a4
- SHA1
  
  6b1e7a99021ff171d7299c956af426c406e1f461
- SHA256
  
  c1d355029858fe03442e184aa08f8f1bfe3f3a4eeb0405301c0566e44090e930
- SHA512
  
  3f1dd437cee84037717eca91e41e24aacdf15a89bab2cd85eddae3204e680181692c53b9b32906496665c2d82903145a3823d293e273160a8250128d77eb1702
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1