61bb3c864b567fc1bee5948d9a6422a4a923415a23aa47ba8624588de83e3558 | Triage

Sharing

General

Target

61bb3c864b567fc1bee5948d9a6422a4a923415a23aa47ba8624588de83e3558
Size

93KB
Sample

221002-3bvxlagdfq
MD5

67cec721adc056510bf16507032e3fd0
SHA1

9d1c6b781fe0f0d6ed145910ed958a50f0e9a86d
SHA256

61bb3c864b567fc1bee5948d9a6422a4a923415a23aa47ba8624588de83e3558
SHA512

11a74b7ddc62b406f0e4ebc417509cf9d3bf28610d380e3634f1d933137d80e6572bdcc4cb7151976f9a5d41e37e90cb172c7907fbb45020656db0d75b72fa58
SSDEEP

1536:7SV8/DcCDCMMkG0DaXJNMEgTSBY3Pzl9PLP2TJoH+9QYQLVhvOkSXCnt:7S8BCfoDaXJNMi2XPL2Ce9QYQR5OkSXC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  61bb3c864b567fc1bee5948d9a6422a4a923415a23aa47ba8624588de83e3558
- Size
  
  93KB
- MD5
  
  67cec721adc056510bf16507032e3fd0
- SHA1
  
  9d1c6b781fe0f0d6ed145910ed958a50f0e9a86d
- SHA256
  
  61bb3c864b567fc1bee5948d9a6422a4a923415a23aa47ba8624588de83e3558
- SHA512
  
  11a74b7ddc62b406f0e4ebc417509cf9d3bf28610d380e3634f1d933137d80e6572bdcc4cb7151976f9a5d41e37e90cb172c7907fbb45020656db0d75b72fa58
- SSDEEP
  
  1536:7SV8/DcCDCMMkG0DaXJNMEgTSBY3Pzl9PLP2TJoH+9QYQLVhvOkSXCnt:7S8BCfoDaXJNMi2XPL2Ce9QYQR5OkSXC
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2