2dc782efb2c261782242ea47f1fe74b0f5aa17b1938e7adf229aa0eb69c42e93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2dc782efb2c261782242ea47f1fe74b0f5aa17b1938e7adf229aa0eb69c42e93
Size

329KB
Sample

230203-ngrd2aac9s
MD5

2573d2e59c785afc69bd673ae84c8683
SHA1

fc2fb39ad33f47fc037ec0d1c5ca7354e3896773
SHA256

2dc782efb2c261782242ea47f1fe74b0f5aa17b1938e7adf229aa0eb69c42e93
SHA512

80fa2d5bb76921202c532338f1b688c4a8375f9b575508615b17e0d387114e128e0b2b76e1fc7b1515e5c872e9bf8b1e6f39c47fb262f8518f47dd24c9e90ade
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  2dc782efb2c261782242ea47f1fe74b0f5aa17b1938e7adf229aa0eb69c42e93
- Size
  
  329KB
- MD5
  
  2573d2e59c785afc69bd673ae84c8683
- SHA1
  
  fc2fb39ad33f47fc037ec0d1c5ca7354e3896773
- SHA256
  
  2dc782efb2c261782242ea47f1fe74b0f5aa17b1938e7adf229aa0eb69c42e93
- SHA512
  
  80fa2d5bb76921202c532338f1b688c4a8375f9b575508615b17e0d387114e128e0b2b76e1fc7b1515e5c872e9bf8b1e6f39c47fb262f8518f47dd24c9e90ade
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1