5ae090ae38de2c365d168f99c3c10fa77e1f6482df7fd8067cd2ea02ab080d7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ae090ae38de2c365d168f99c3c10fa77e1f6482df7fd8067cd2ea02ab080d7c
Size

329KB
Sample

230203-kjlpsagf6s
MD5

98a115d0b10920b9c8a4821360e5c155
SHA1

70c20ce06c700072066c80687c3ff680f624027b
SHA256

5ae090ae38de2c365d168f99c3c10fa77e1f6482df7fd8067cd2ea02ab080d7c
SHA512

fdbbe201afa38a501a545c738004d175284c5aa5a3895a7a31b1e558626fb477eb3426954473fd5e5722d92c918c8ae27e5d4ac0d11feb8339d0b1e7311ae26d
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  5ae090ae38de2c365d168f99c3c10fa77e1f6482df7fd8067cd2ea02ab080d7c
- Size
  
  329KB
- MD5
  
  98a115d0b10920b9c8a4821360e5c155
- SHA1
  
  70c20ce06c700072066c80687c3ff680f624027b
- SHA256
  
  5ae090ae38de2c365d168f99c3c10fa77e1f6482df7fd8067cd2ea02ab080d7c
- SHA512
  
  fdbbe201afa38a501a545c738004d175284c5aa5a3895a7a31b1e558626fb477eb3426954473fd5e5722d92c918c8ae27e5d4ac0d11feb8339d0b1e7311ae26d
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1