3a0e50bf1a90925d4d255b7e5febea46e173a1081c2208d6bfef90cd0724c4f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a0e50bf1a90925d4d255b7e5febea46e173a1081c2208d6bfef90cd0724c4f1
Size

4.6MB
Sample

230312-j7klysdc73
MD5

af732877d559768744a14634c14686ad
SHA1

85d5d8636f0f2b19133450e94bae6dddfad30aeb
SHA256

3a0e50bf1a90925d4d255b7e5febea46e173a1081c2208d6bfef90cd0724c4f1
SHA512

56344b1ede822bcecd99c71a06e584f3d344f8b7cb75d69a12ba42a859c5985d8238a4dca8c220e8199d89b4be949469a13d0d7fa40bcccc574fa47a9cc5381f
SSDEEP

98304:okFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrp:okFRPQzceZHOc3RxAwZG1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3a0e50bf1a90925d4d255b7e5febea46e173a1081c2208d6bfef90cd0724c4f1
- Size
  
  4.6MB
- MD5
  
  af732877d559768744a14634c14686ad
- SHA1
  
  85d5d8636f0f2b19133450e94bae6dddfad30aeb
- SHA256
  
  3a0e50bf1a90925d4d255b7e5febea46e173a1081c2208d6bfef90cd0724c4f1
- SHA512
  
  56344b1ede822bcecd99c71a06e584f3d344f8b7cb75d69a12ba42a859c5985d8238a4dca8c220e8199d89b4be949469a13d0d7fa40bcccc574fa47a9cc5381f
- SSDEEP
  
  98304:okFRP61hlce+gu3O+UHKZc+sRZvojwn6MTSrp:okFRPQzceZHOc3RxAwZG1
Score

7^/10

discovery
- Executes dropped EXE
- Modifies file permissions
  discovery
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1