e8310fbd5227eeed04a4f144b2148a72994a706188473cd1c1ffa388b9e1475d | Triage

Sharing

General

Target

e8310fbd5227eeed04a4f144b2148a72994a706188473cd1c1ffa388b9e1475d
Size

308KB
Sample

221011-v28mdafeg3
MD5

6ff9cace5b4728a1f133ee429a26e3d0
SHA1

b2120e6d1e1c646f0300c11fe91a88ac8bac1187
SHA256

e8310fbd5227eeed04a4f144b2148a72994a706188473cd1c1ffa388b9e1475d
SHA512

cd28d2f4cd60307f5bab031a464d8a12eb0dc6f895515e0e54c03bfcb8c8a51e30673c523727921f875c5f6e333ec7159921c211308b82be6fdbf91cd0dfb648
SSDEEP

6144:I2Cu91FMUJi/wD7s63aPMrl5jS9NwZRElbz6MK5VuakszsrbQ0qAbCv:7Cu9gUxo6eMrl5owZaliQs2b

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e8310fbd5227eeed04a4f144b2148a72994a706188473cd1c1ffa388b9e1475d
- Size
  
  308KB
- MD5
  
  6ff9cace5b4728a1f133ee429a26e3d0
- SHA1
  
  b2120e6d1e1c646f0300c11fe91a88ac8bac1187
- SHA256
  
  e8310fbd5227eeed04a4f144b2148a72994a706188473cd1c1ffa388b9e1475d
- SHA512
  
  cd28d2f4cd60307f5bab031a464d8a12eb0dc6f895515e0e54c03bfcb8c8a51e30673c523727921f875c5f6e333ec7159921c211308b82be6fdbf91cd0dfb648
- SSDEEP
  
  6144:I2Cu91FMUJi/wD7s63aPMrl5jS9NwZRElbz6MK5VuakszsrbQ0qAbCv:7Cu9gUxo6eMrl5owZaliQs2b
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2