edf9e80c60b3b3f950caee653d9d94609d846fa450c233ceede61e302e4e9ea1 | Triage

Sharing

General

Target

edf9e80c60b3b3f950caee653d9d94609d846fa450c233ceede61e302e4e9ea1
Size

329KB
Sample

230203-metwpsec35
MD5

aa96c0b729f15f1f82375b75fc4c5cb8
SHA1

00b7affbc673d124867236cf86639e2865086e15
SHA256

edf9e80c60b3b3f950caee653d9d94609d846fa450c233ceede61e302e4e9ea1
SHA512

693d5d2fa60c79c64d413194cb586f0c0e1deb35a230e204ce397b495ad64e3d66d97518737a95eef42217164b20a64ab8a691d1e4cb44dc9b4f7fc90037a489
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  edf9e80c60b3b3f950caee653d9d94609d846fa450c233ceede61e302e4e9ea1
- Size
  
  329KB
- MD5
  
  aa96c0b729f15f1f82375b75fc4c5cb8
- SHA1
  
  00b7affbc673d124867236cf86639e2865086e15
- SHA256
  
  edf9e80c60b3b3f950caee653d9d94609d846fa450c233ceede61e302e4e9ea1
- SHA512
  
  693d5d2fa60c79c64d413194cb586f0c0e1deb35a230e204ce397b495ad64e3d66d97518737a95eef42217164b20a64ab8a691d1e4cb44dc9b4f7fc90037a489
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1