79913df1161a6e3c7dd5d6f4e38c3baa1acd2c60572725220bc5d0934cdaa4ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

79913df1161a6e3c7dd5d6f4e38c3baa1acd2c60572725220bc5d0934cdaa4ed
Size

322KB
Sample

230903-1w3rtscc8z
MD5

353abe33062bb6bb408def916254e023
SHA1

8d4f8792aff58fe446d5cd78fc8d5b36f0cd677e
SHA256

79913df1161a6e3c7dd5d6f4e38c3baa1acd2c60572725220bc5d0934cdaa4ed
SHA512

5096d0c5d833c165c8a19995cf7973b3b7b42dd06839cff4a993858f553d557ba9a222fd7f18551b6cc7e13828830d5275a0d7a784edcd54e7bc94ba47d9bc37
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

7^/10

Malware Config

Targets

- Target
  
  79913df1161a6e3c7dd5d6f4e38c3baa1acd2c60572725220bc5d0934cdaa4ed
- Size
  
  322KB
- MD5
  
  353abe33062bb6bb408def916254e023
- SHA1
  
  8d4f8792aff58fe446d5cd78fc8d5b36f0cd677e
- SHA256
  
  79913df1161a6e3c7dd5d6f4e38c3baa1acd2c60572725220bc5d0934cdaa4ed
- SHA512
  
  5096d0c5d833c165c8a19995cf7973b3b7b42dd06839cff4a993858f553d557ba9a222fd7f18551b6cc7e13828830d5275a0d7a784edcd54e7bc94ba47d9bc37
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

7^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2