e21068e869bbf343ab637e8efbaab85ba91dab51ff12c894fd568d21e73302f8 | Triage

Sharing

General

Target

e21068e869bbf343ab637e8efbaab85ba91dab51ff12c894fd568d21e73302f8
Size

4.6MB
Sample

230312-datkpsed8z
MD5

1388cbfbec43284a1212f9f18e20a074
SHA1

82e9dc4248ad0070d5169ebd1078484877cc75c7
SHA256

e21068e869bbf343ab637e8efbaab85ba91dab51ff12c894fd568d21e73302f8
SHA512

1b3d5b3c9f01d4364f05a22c8da3eebc4d6419e6408098b86401051edc38aa784803b18f1af3b521466c0e4b77c2bff9f1564de823a409965350f44609e42624
SSDEEP

98304:JgFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrZ:uFRPQzceZHOc3RxAwZGF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e21068e869bbf343ab637e8efbaab85ba91dab51ff12c894fd568d21e73302f8
- Size
  
  4.6MB
- MD5
  
  1388cbfbec43284a1212f9f18e20a074
- SHA1
  
  82e9dc4248ad0070d5169ebd1078484877cc75c7
- SHA256
  
  e21068e869bbf343ab637e8efbaab85ba91dab51ff12c894fd568d21e73302f8
- SHA512
  
  1b3d5b3c9f01d4364f05a22c8da3eebc4d6419e6408098b86401051edc38aa784803b18f1af3b521466c0e4b77c2bff9f1564de823a409965350f44609e42624
- SSDEEP
  
  98304:JgFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrZ:uFRPQzceZHOc3RxAwZGF
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1