9154b6ca5e05e46fc3682d0442d53a559378159898a2e657bba62a77b2bca443 | Triage

Sharing

General

Target

9154b6ca5e05e46fc3682d0442d53a559378159898a2e657bba62a77b2bca443
Size

351KB
Sample

221029-apf2dadhbr
MD5

00274ba95ff065f37eb89a2a4ee7b43d
SHA1

a9ce88b9066daa077274dad9765fb436b59f5f66
SHA256

9154b6ca5e05e46fc3682d0442d53a559378159898a2e657bba62a77b2bca443
SHA512

28e482284b9560e643966ac4da580885c9b7697ebd23815185cc19a0c73ddab2f3ab8b74c19abe650be6e399e3e237b79ca608644604b4b801cf3eb53a354e91
SSDEEP

6144:7j6xv0w4GWlSIB+qSHuMKYUu8J8RCf6GVAn69y/TNj6h3Jo/YJp:nX1SsfMKYUhJ3f60XkTN5A

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9154b6ca5e05e46fc3682d0442d53a559378159898a2e657bba62a77b2bca443
- Size
  
  351KB
- MD5
  
  00274ba95ff065f37eb89a2a4ee7b43d
- SHA1
  
  a9ce88b9066daa077274dad9765fb436b59f5f66
- SHA256
  
  9154b6ca5e05e46fc3682d0442d53a559378159898a2e657bba62a77b2bca443
- SHA512
  
  28e482284b9560e643966ac4da580885c9b7697ebd23815185cc19a0c73ddab2f3ab8b74c19abe650be6e399e3e237b79ca608644604b4b801cf3eb53a354e91
- SSDEEP
  
  6144:7j6xv0w4GWlSIB+qSHuMKYUu8J8RCf6GVAn69y/TNj6h3Jo/YJp:nX1SsfMKYUhJ3f60XkTN5A
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2