9d09bf21fc7d3f4ed74e96c861ba25436813e0151fe5d9349620455c4ae78800 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9d09bf21fc7d3f4ed74e96c861ba25436813e0151fe5d9349620455c4ae78800
Size

4.2MB
Sample

230306-ekth5aae96
MD5

687a90960ea449ba3fd9673e55f89896
SHA1

907815e44e3f23f5f72105c58015d870a4cb9fa0
SHA256

9d09bf21fc7d3f4ed74e96c861ba25436813e0151fe5d9349620455c4ae78800
SHA512

adae85b13c78af5c335b36030344379cb6ce4f02e897cf2e3a606929a5d31dd9c5e572dd50efd3feae37b79787b5a5a2efb6eeda50f371325087a2cda58d23cb
SSDEEP

98304:XbEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:rRG4sskf38s7MjJeVYT69id+VbaMc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9d09bf21fc7d3f4ed74e96c861ba25436813e0151fe5d9349620455c4ae78800
- Size
  
  4.2MB
- MD5
  
  687a90960ea449ba3fd9673e55f89896
- SHA1
  
  907815e44e3f23f5f72105c58015d870a4cb9fa0
- SHA256
  
  9d09bf21fc7d3f4ed74e96c861ba25436813e0151fe5d9349620455c4ae78800
- SHA512
  
  adae85b13c78af5c335b36030344379cb6ce4f02e897cf2e3a606929a5d31dd9c5e572dd50efd3feae37b79787b5a5a2efb6eeda50f371325087a2cda58d23cb
- SSDEEP
  
  98304:XbEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:rRG4sskf38s7MjJeVYT69id+VbaMc
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1