faad59a66d355bbe403b84d6e878494a52a78daaef6a6567978dcdfe2d7e0e05 | Triage

Sharing

General

Target

faad59a66d355bbe403b84d6e878494a52a78daaef6a6567978dcdfe2d7e0e05
Size

329KB
Sample

230203-mjbkxsec84
MD5

8b6139a356f03752d1ad147320c1b800
SHA1

8dbe8f4e303f70c1422c40f56bf569342615f957
SHA256

faad59a66d355bbe403b84d6e878494a52a78daaef6a6567978dcdfe2d7e0e05
SHA512

ab14cbbf05a0dd2084dcf98e8020277566bcde3f9f1303ebcdad8238fa7daf684135dcda0b986c81b76b501a95ca96a074af59fba363e439953e45f3dd31bfb9
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  faad59a66d355bbe403b84d6e878494a52a78daaef6a6567978dcdfe2d7e0e05
- Size
  
  329KB
- MD5
  
  8b6139a356f03752d1ad147320c1b800
- SHA1
  
  8dbe8f4e303f70c1422c40f56bf569342615f957
- SHA256
  
  faad59a66d355bbe403b84d6e878494a52a78daaef6a6567978dcdfe2d7e0e05
- SHA512
  
  ab14cbbf05a0dd2084dcf98e8020277566bcde3f9f1303ebcdad8238fa7daf684135dcda0b986c81b76b501a95ca96a074af59fba363e439953e45f3dd31bfb9
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1