a2cd4272bc5085927aa3a532d849804bd609c252beaf76d3d0e6d9a1e4e0144b | Triage

Sharing

General

Target

SecuriteInfo.com.W64.MSIL_Agent.EDH.gen.Eldorado.29910.17503.exe
Size

1.1MB
Sample

231124-f12p4sgh3y
MD5

dadafd0e9cf90e6ec7244b1ed2a11eca
SHA1

98436daf69c89d07f4ab4bd2cdde6b5691d1b075
SHA256

a2cd4272bc5085927aa3a532d849804bd609c252beaf76d3d0e6d9a1e4e0144b
SHA512

1d11cecedaf74c6098791ee986733fb83ecf8739f3698373e2ff6ec0a38e92498bacaf98542feeebe246ff62d119bdd2fcc3ab3f951402cd9b770a9866f807f8
SSDEEP

24576:fmfmE0bk3oLIK2RjfjKZEZlUlPs5pDX1cZ:fmfmE0bk3oLIK2Rj4EwPb

Score

6^/10

collection

Malware Config

Targets

- Target
  
  SecuriteInfo.com.W64.MSIL_Agent.EDH.gen.Eldorado.29910.17503.exe
- Size
  
  1.1MB
- MD5
  
  dadafd0e9cf90e6ec7244b1ed2a11eca
- SHA1
  
  98436daf69c89d07f4ab4bd2cdde6b5691d1b075
- SHA256
  
  a2cd4272bc5085927aa3a532d849804bd609c252beaf76d3d0e6d9a1e4e0144b
- SHA512
  
  1d11cecedaf74c6098791ee986733fb83ecf8739f3698373e2ff6ec0a38e92498bacaf98542feeebe246ff62d119bdd2fcc3ab3f951402cd9b770a9866f807f8
- SSDEEP
  
  24576:fmfmE0bk3oLIK2RjfjKZEZlUlPs5pDX1cZ:fmfmE0bk3oLIK2Rj4EwPb
Score

6^/10

collection
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2