235f6a7c6fa4211a8e5be84a6527d6bbdd7ef383ac5fdde0865c81212735c7df | Triage

Sharing

General

Target

235f6a7c6fa4211a8e5be84a6527d6bbdd7ef383ac5fdde0865c81212735c7df
Size

171KB
Sample

221121-p3ta7aag47
MD5

230965f195f0df7df0022b6060c873e0
SHA1

05c9f75559ab4c856a8a9f36ce9ab7989c304297
SHA256

235f6a7c6fa4211a8e5be84a6527d6bbdd7ef383ac5fdde0865c81212735c7df
SHA512

b71fbb4b779cf64d9ebdab85e1aef17060cb0c91e781e13eca269231ca14277c8b8f4cb5b6c69b35973c08cb891064071536f4734577cf7033b32f8637bc22fb
SSDEEP

3072:7sI+CkiTP3YdoOUgVI5pzPEm15hKJlgpJsyIBGmYYyEl:0CkiTP3dOUgVezPlThbMNEEl

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  235f6a7c6fa4211a8e5be84a6527d6bbdd7ef383ac5fdde0865c81212735c7df
- Size
  
  171KB
- MD5
  
  230965f195f0df7df0022b6060c873e0
- SHA1
  
  05c9f75559ab4c856a8a9f36ce9ab7989c304297
- SHA256
  
  235f6a7c6fa4211a8e5be84a6527d6bbdd7ef383ac5fdde0865c81212735c7df
- SHA512
  
  b71fbb4b779cf64d9ebdab85e1aef17060cb0c91e781e13eca269231ca14277c8b8f4cb5b6c69b35973c08cb891064071536f4734577cf7033b32f8637bc22fb
- SSDEEP
  
  3072:7sI+CkiTP3YdoOUgVI5pzPEm15hKJlgpJsyIBGmYYyEl:0CkiTP3dOUgVezPlThbMNEEl
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2