d9d6fa957882e4170de5bf74f27d00c92b7d7f8094d17b8e2f0ef9f99977c7ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9d6fa957882e4170de5bf74f27d00c92b7d7f8094d17b8e2f0ef9f99977c7ba
Size

328KB
Sample

230203-jecqmscf57
MD5

28d5cb6345800d21861f1bec25cab0cf
SHA1

70ba8a78a9f1729764c99d0ff27ca7e6b3c61e00
SHA256

d9d6fa957882e4170de5bf74f27d00c92b7d7f8094d17b8e2f0ef9f99977c7ba
SHA512

0a02211e3cf91926054a109af5c318b5f5921a2343af0e813f1c46bbb226a0cd51196d8e4253b0f815cf51b4ad04cdb16e702412c8864cb265f122322b7f427c
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  d9d6fa957882e4170de5bf74f27d00c92b7d7f8094d17b8e2f0ef9f99977c7ba
- Size
  
  328KB
- MD5
  
  28d5cb6345800d21861f1bec25cab0cf
- SHA1
  
  70ba8a78a9f1729764c99d0ff27ca7e6b3c61e00
- SHA256
  
  d9d6fa957882e4170de5bf74f27d00c92b7d7f8094d17b8e2f0ef9f99977c7ba
- SHA512
  
  0a02211e3cf91926054a109af5c318b5f5921a2343af0e813f1c46bbb226a0cd51196d8e4253b0f815cf51b4ad04cdb16e702412c8864cb265f122322b7f427c
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1