68e272e40da3acbe763374b71fbbf375aaa1ead475ebedfebe699c5f18d2df9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68e272e40da3acbe763374b71fbbf375aaa1ead475ebedfebe699c5f18d2df9f
Size

2.2MB
Sample

221006-azzw8sgac8
MD5

27a9d1df485ef6104e9567911e420934
SHA1

7ac40785cc0743178cf9835af6ebbe509e4b6e67
SHA256

68e272e40da3acbe763374b71fbbf375aaa1ead475ebedfebe699c5f18d2df9f
SHA512

b8169287d67763fe8fab7b1f73b11f78200af9223e35be4613f894f02f1b177d5d9d9dc12f37d2fd5541d7a55076fd6840d415dab9f124bb1ab68f9dc6558043
SSDEEP

24576:lJ2oCmUBD74FYRr4mccN+BoCIFDnYQb6VOIMhFDId:

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  68e272e40da3acbe763374b71fbbf375aaa1ead475ebedfebe699c5f18d2df9f
- Size
  
  2.2MB
- MD5
  
  27a9d1df485ef6104e9567911e420934
- SHA1
  
  7ac40785cc0743178cf9835af6ebbe509e4b6e67
- SHA256
  
  68e272e40da3acbe763374b71fbbf375aaa1ead475ebedfebe699c5f18d2df9f
- SHA512
  
  b8169287d67763fe8fab7b1f73b11f78200af9223e35be4613f894f02f1b177d5d9d9dc12f37d2fd5541d7a55076fd6840d415dab9f124bb1ab68f9dc6558043
- SSDEEP
  
  24576:lJ2oCmUBD74FYRr4mccN+BoCIFDnYQb6VOIMhFDId:
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1