2a89ba874324acc9947ba5013e8efd7c6f65e32fbc7c1b49d48e27b635fa2fd4 | Triage

Sharing

General

Target

2a89ba874324acc9947ba5013e8efd7c6f65e32fbc7c1b49d48e27b635fa2fd4
Size

4.6MB
Sample

230311-22t8bade9w
MD5

579e25195cff7b2081f1ee3613d1369b
SHA1

86fff0f91de6042f81c0eaa9f7ed678d51856e26
SHA256

2a89ba874324acc9947ba5013e8efd7c6f65e32fbc7c1b49d48e27b635fa2fd4
SHA512

337c607e0d2ae47522d5456d96c4c718fbcc3900e5252b692f629a52853fa3cc6a6b38b8ee6e6a59df2b6e41364a1a5db0df106d8c5e1e1218e2869b74ccb0b7
SSDEEP

98304:avFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrJ:2FRPQzceZHOc3RxAwZGV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2a89ba874324acc9947ba5013e8efd7c6f65e32fbc7c1b49d48e27b635fa2fd4
- Size
  
  4.6MB
- MD5
  
  579e25195cff7b2081f1ee3613d1369b
- SHA1
  
  86fff0f91de6042f81c0eaa9f7ed678d51856e26
- SHA256
  
  2a89ba874324acc9947ba5013e8efd7c6f65e32fbc7c1b49d48e27b635fa2fd4
- SHA512
  
  337c607e0d2ae47522d5456d96c4c718fbcc3900e5252b692f629a52853fa3cc6a6b38b8ee6e6a59df2b6e41364a1a5db0df106d8c5e1e1218e2869b74ccb0b7
- SSDEEP
  
  98304:avFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrJ:2FRPQzceZHOc3RxAwZGV
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1