885c28924da947b5bc5ac03f60d1af231f4bca2ae9c0ddb8a684413fd998ba18 | Triage

Sharing

General

Target

885c28924da947b5bc5ac03f60d1af231f4bca2ae9c0ddb8a684413fd998ba18
Size

329KB
Sample

230203-khevvagf4x
MD5

b93adbbb85a9307b23389ba9ee6794c8
SHA1

9fb1049877ac5681fe103832c8eda682e12344d6
SHA256

885c28924da947b5bc5ac03f60d1af231f4bca2ae9c0ddb8a684413fd998ba18
SHA512

d8c07ba2df580838ec66bc931724faa449cf00dd62750da1f3e8e791ab42a017b3a27a88366e3b361acbde4431f2e6bec375a8f87194ede0d0548787ac8823b8
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  885c28924da947b5bc5ac03f60d1af231f4bca2ae9c0ddb8a684413fd998ba18
- Size
  
  329KB
- MD5
  
  b93adbbb85a9307b23389ba9ee6794c8
- SHA1
  
  9fb1049877ac5681fe103832c8eda682e12344d6
- SHA256
  
  885c28924da947b5bc5ac03f60d1af231f4bca2ae9c0ddb8a684413fd998ba18
- SHA512
  
  d8c07ba2df580838ec66bc931724faa449cf00dd62750da1f3e8e791ab42a017b3a27a88366e3b361acbde4431f2e6bec375a8f87194ede0d0548787ac8823b8
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1