d06b96a47e0ac2ea2772d348216a4d79be24e1a5d81663ba4074a1430fae10f4 | Triage

Sharing

General

Target

d06b96a47e0ac2ea2772d348216a4d79be24e1a5d81663ba4074a1430fae10f4
Size

109KB
Sample

221107-ceefxaccf6
MD5

0e2e43cb67f02561f3436a01137912c0
SHA1

0a3545e4db7e3f007f8cfc22c233d567cb5afc20
SHA256

d06b96a47e0ac2ea2772d348216a4d79be24e1a5d81663ba4074a1430fae10f4
SHA512

98bf0aa64149807401d1e8d4d9b2abfea0ca0531b75506c8e738509b4e63202d1918e0959582b0623e54a1a44fa24c14889c6e6d48e41679f2824d1d56a10c93
SSDEEP

3072:bS8BCfoDaXJNMFlh2sBytr9OMxIfvQ+Y1ua0:bPB6EFP2qIE1nug/

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d06b96a47e0ac2ea2772d348216a4d79be24e1a5d81663ba4074a1430fae10f4
- Size
  
  109KB
- MD5
  
  0e2e43cb67f02561f3436a01137912c0
- SHA1
  
  0a3545e4db7e3f007f8cfc22c233d567cb5afc20
- SHA256
  
  d06b96a47e0ac2ea2772d348216a4d79be24e1a5d81663ba4074a1430fae10f4
- SHA512
  
  98bf0aa64149807401d1e8d4d9b2abfea0ca0531b75506c8e738509b4e63202d1918e0959582b0623e54a1a44fa24c14889c6e6d48e41679f2824d1d56a10c93
- SSDEEP
  
  3072:bS8BCfoDaXJNMFlh2sBytr9OMxIfvQ+Y1ua0:bPB6EFP2qIE1nug/
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2