39b735c90e03975394efd41e9cf584e880b02fad6c4525fc0bd5df9950d598c3 | Triage

Sharing

General

Target

39b735c90e03975394efd41e9cf584e880b02fad6c4525fc0bd5df9950d598c3
Size

312KB
Sample

220919-cypqzsgdhp
MD5

781950c86fbad3d62860cadede4db286
SHA1

b11afd8b6d4c2b28075b8f607017d42f97744545
SHA256

39b735c90e03975394efd41e9cf584e880b02fad6c4525fc0bd5df9950d598c3
SHA512

1430a292b14b7c4bf71bb8037b64291db72be78adadfa1a5fb552002588a6151a139c923faf03ed49a405a7f9142ff4e60a8e34651056284afdede1dc4e9e265
SSDEEP

6144:tP5WwCxyQNplDgZDofgCCWdm14Sy1zTM/xPZuooS:tP5Oppn5dmmSyqPZDoS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  39b735c90e03975394efd41e9cf584e880b02fad6c4525fc0bd5df9950d598c3
- Size
  
  312KB
- MD5
  
  781950c86fbad3d62860cadede4db286
- SHA1
  
  b11afd8b6d4c2b28075b8f607017d42f97744545
- SHA256
  
  39b735c90e03975394efd41e9cf584e880b02fad6c4525fc0bd5df9950d598c3
- SHA512
  
  1430a292b14b7c4bf71bb8037b64291db72be78adadfa1a5fb552002588a6151a139c923faf03ed49a405a7f9142ff4e60a8e34651056284afdede1dc4e9e265
- SSDEEP
  
  6144:tP5WwCxyQNplDgZDofgCCWdm14Sy1zTM/xPZuooS:tP5Oppn5dmmSyqPZDoS
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2