965056d00d3bbc2ee63f1d7f3ebf8e8722f6982133499ae5b9f3c10f6d12b174 | Triage

Sharing

General

Target

965056d00d3bbc2ee63f1d7f3ebf8e8722f6982133499ae5b9f3c10f6d12b174
Size

329KB
Sample

230203-lema7ahb61
MD5

fd5f421422ac170f098900b5c04e5aee
SHA1

7b88f1175ab6445faecd21b5b64099d02e0905eb
SHA256

965056d00d3bbc2ee63f1d7f3ebf8e8722f6982133499ae5b9f3c10f6d12b174
SHA512

dc9ed827fde657a34da3e0ed57a97ae3cd1abb5a1004894b6b21d01d61599ee85d914b4f3d3263f4c22e606e9bbf0bfefeb870df7a129accc5db78c6932f4b91
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  965056d00d3bbc2ee63f1d7f3ebf8e8722f6982133499ae5b9f3c10f6d12b174
- Size
  
  329KB
- MD5
  
  fd5f421422ac170f098900b5c04e5aee
- SHA1
  
  7b88f1175ab6445faecd21b5b64099d02e0905eb
- SHA256
  
  965056d00d3bbc2ee63f1d7f3ebf8e8722f6982133499ae5b9f3c10f6d12b174
- SHA512
  
  dc9ed827fde657a34da3e0ed57a97ae3cd1abb5a1004894b6b21d01d61599ee85d914b4f3d3263f4c22e606e9bbf0bfefeb870df7a129accc5db78c6932f4b91
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1