f5b1daaf2f411d05b8c9e93efb745444dba81fcfb398043ec8eea8712a4ddb5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5b1daaf2f411d05b8c9e93efb745444dba81fcfb398043ec8eea8712a4ddb5f
Size

4.2MB
Sample

230306-hlxtqaba56
MD5

427d2fe456f5d4ad50895f704620e2bf
SHA1

07e523afdb8581e92d7039958f582389c1b4b8d8
SHA256

f5b1daaf2f411d05b8c9e93efb745444dba81fcfb398043ec8eea8712a4ddb5f
SHA512

12cb9a61326fae3b74c02c65795b86f9f780e1aa3a9cf22e1c653ae8c886ade2900cf950de45df3ef6cdfc69bde034c95de55b2d3350a82eabe6aa4cfa821789
SSDEEP

98304:SKEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:/RG4sskf38s7MjJeVYT69id+VbaMc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f5b1daaf2f411d05b8c9e93efb745444dba81fcfb398043ec8eea8712a4ddb5f
- Size
  
  4.2MB
- MD5
  
  427d2fe456f5d4ad50895f704620e2bf
- SHA1
  
  07e523afdb8581e92d7039958f582389c1b4b8d8
- SHA256
  
  f5b1daaf2f411d05b8c9e93efb745444dba81fcfb398043ec8eea8712a4ddb5f
- SHA512
  
  12cb9a61326fae3b74c02c65795b86f9f780e1aa3a9cf22e1c653ae8c886ade2900cf950de45df3ef6cdfc69bde034c95de55b2d3350a82eabe6aa4cfa821789
- SSDEEP
  
  98304:SKEhTEG4s2Rk5cs38shhSNjJe+i4sYeq69DedTV0VbTXF2RAvRthw:/RG4sskf38s7MjJeVYT69id+VbaMc
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1