0781ec681ae219ec507a988ce6cea0d52b3674d0f44c89e78d7753bccecd4377 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0781ec681ae219ec507a988ce6cea0d52b3674d0f44c89e78d7753bccecd4377
Size

178KB
Sample

221002-jjp7jaebf9
MD5

6f9638fd477eae1471f2bdd8c4cd0290
SHA1

cc02aab389aac01878f3bd80722f6de92d605be3
SHA256

0781ec681ae219ec507a988ce6cea0d52b3674d0f44c89e78d7753bccecd4377
SHA512

44975ac6ca133a3a9dc67978f2380f22e8dcb1198e756a95523dd3a37e6338a062ba0f0ba1552feeda452cf3a426eb3557855769e0bd19e6ae81a16415c3aecd
SSDEEP

3072:4gXdZt9P6D3XJcMkFxQGyq6Q3DNxAY2A7MfEmnZXzK+RzYwP:4e34fkFxtyCD/r2tEWDK+T

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0781ec681ae219ec507a988ce6cea0d52b3674d0f44c89e78d7753bccecd4377
- Size
  
  178KB
- MD5
  
  6f9638fd477eae1471f2bdd8c4cd0290
- SHA1
  
  cc02aab389aac01878f3bd80722f6de92d605be3
- SHA256
  
  0781ec681ae219ec507a988ce6cea0d52b3674d0f44c89e78d7753bccecd4377
- SHA512
  
  44975ac6ca133a3a9dc67978f2380f22e8dcb1198e756a95523dd3a37e6338a062ba0f0ba1552feeda452cf3a426eb3557855769e0bd19e6ae81a16415c3aecd
- SSDEEP
  
  3072:4gXdZt9P6D3XJcMkFxQGyq6Q3DNxAY2A7MfEmnZXzK+RzYwP:4e34fkFxtyCD/r2tEWDK+T
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2