5932a2d54d23d250519cd12807d20b78d7ba73d29fedcca14c06ef2ffe11955e | Triage

Sharing

General

Target

5932a2d54d23d250519cd12807d20b78d7ba73d29fedcca14c06ef2ffe11955e
Size

122KB
Sample

221029-a1b7kaedbr
MD5

0660c7107a521ef3467678bf1417a860
SHA1

4c59ff3c87b06ab283a04be9ea48d872dd0fd229
SHA256

5932a2d54d23d250519cd12807d20b78d7ba73d29fedcca14c06ef2ffe11955e
SHA512

3ecb34b1d72b7b17b57bdd0deecaec9111ea7698acb866a16b4dc1f5246298acab0e06f4eb3c05cf79e153f2de049edc56b2abb0dc3f35b8ef2f1fb5b983b7c3
SSDEEP

3072:bS8BCfoDaXJNMhz6mZixAc39tFOtUa9fwHPTQEXt5FeUy+huC:bPB6Eh+rAU8tUaNw7Qg5sl+YC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5932a2d54d23d250519cd12807d20b78d7ba73d29fedcca14c06ef2ffe11955e
- Size
  
  122KB
- MD5
  
  0660c7107a521ef3467678bf1417a860
- SHA1
  
  4c59ff3c87b06ab283a04be9ea48d872dd0fd229
- SHA256
  
  5932a2d54d23d250519cd12807d20b78d7ba73d29fedcca14c06ef2ffe11955e
- SHA512
  
  3ecb34b1d72b7b17b57bdd0deecaec9111ea7698acb866a16b4dc1f5246298acab0e06f4eb3c05cf79e153f2de049edc56b2abb0dc3f35b8ef2f1fb5b983b7c3
- SSDEEP
  
  3072:bS8BCfoDaXJNMhz6mZixAc39tFOtUa9fwHPTQEXt5FeUy+huC:bPB6Eh+rAU8tUaNw7Qg5sl+YC
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2