fa98feb0fc8ff8b25659427c063181b1d05600900959b0eb4f478a0688d7f105 | Triage

Sharing

General

Target

fa98feb0fc8ff8b25659427c063181b1d05600900959b0eb4f478a0688d7f105_JC.exe
Size

1.9MB
Sample

231010-w51xdaff8x
MD5

b0f43da8d5e294f83d9acaeee4023888
SHA1

6f050ea88b1f005ebc8a09b385f609214c15d9d7
SHA256

fa98feb0fc8ff8b25659427c063181b1d05600900959b0eb4f478a0688d7f105
SHA512

b33d2d3e7e38ea32b89d0573321e83090632ec81e684072f5d35f49295e21b1a7ca2d66a9af739f3b3228e78e3c7b8c143c0513371b49a137b4c17eab3aca60d
SSDEEP

24576:7LdoWOG0h0DlBtcuRvfxsSc/JgVkmw24kBMM0:2G0h0DdvzQgVkmY

Score

7^/10

Malware Config

Targets

- Target
  
  fa98feb0fc8ff8b25659427c063181b1d05600900959b0eb4f478a0688d7f105_JC.exe
- Size
  
  1.9MB
- MD5
  
  b0f43da8d5e294f83d9acaeee4023888
- SHA1
  
  6f050ea88b1f005ebc8a09b385f609214c15d9d7
- SHA256
  
  fa98feb0fc8ff8b25659427c063181b1d05600900959b0eb4f478a0688d7f105
- SHA512
  
  b33d2d3e7e38ea32b89d0573321e83090632ec81e684072f5d35f49295e21b1a7ca2d66a9af739f3b3228e78e3c7b8c143c0513371b49a137b4c17eab3aca60d
- SSDEEP
  
  24576:7LdoWOG0h0DlBtcuRvfxsSc/JgVkmw24kBMM0:2G0h0DdvzQgVkmY
Score

7^/10
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2