7c5c374fff9dd0e030572ec24a1eb4787f5c5f4ea5101c88c3f208e7cb3f8ca0 | Triage

Sharing

General

Target

7c5c374fff9dd0e030572ec24a1eb4787f5c5f4ea5101c88c3f208e7cb3f8ca0
Size

299KB
Sample

221011-h82q7abhe3
MD5

7cdfddba8f4c3146ba1b23e007817d90
SHA1

3871c87b9ebebc84acac734a05e448995a148fdf
SHA256

7c5c374fff9dd0e030572ec24a1eb4787f5c5f4ea5101c88c3f208e7cb3f8ca0
SHA512

e1e1b5ba0df52f4726f6cbc7824947811c22493e8f49f1e80b44589879e0c5ccc52596025927213cb34f6b5489dcb1d11700574e2d8f36f95fd5cbf64d9a3c31
SSDEEP

6144:UTQigjOeD798+kcwXB5Fa94Be2kbMVgC4NLvBb79savmHXP:UTQJjz98+6fBe2kYVgxFmHXP

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7c5c374fff9dd0e030572ec24a1eb4787f5c5f4ea5101c88c3f208e7cb3f8ca0
- Size
  
  299KB
- MD5
  
  7cdfddba8f4c3146ba1b23e007817d90
- SHA1
  
  3871c87b9ebebc84acac734a05e448995a148fdf
- SHA256
  
  7c5c374fff9dd0e030572ec24a1eb4787f5c5f4ea5101c88c3f208e7cb3f8ca0
- SHA512
  
  e1e1b5ba0df52f4726f6cbc7824947811c22493e8f49f1e80b44589879e0c5ccc52596025927213cb34f6b5489dcb1d11700574e2d8f36f95fd5cbf64d9a3c31
- SSDEEP
  
  6144:UTQigjOeD798+kcwXB5Fa94Be2kbMVgC4NLvBb79savmHXP:UTQJjz98+6fBe2kYVgxFmHXP
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2