67337d02f07e6be80ec0041f2d48debee5a5c6197551ac3d0e21e02b17e674da | Triage

Sharing

General

Target

67337d02f07e6be80ec0041f2d48debee5a5c6197551ac3d0e21e02b17e674da
Size

284KB
Sample

221123-l1ehgacg47
MD5

192ada8ded31645f8c54e96e793417cb
SHA1

1943528aa0cde75d80cb16242b7d9139a2b37f39
SHA256

67337d02f07e6be80ec0041f2d48debee5a5c6197551ac3d0e21e02b17e674da
SHA512

e67d7b3f6341f2f100a3b302c8f99adeab5463299c6aa7f196e09973e920f6666346b08a455563b65d2cd06537bb4e9b319bc7501df5324308d96ed80d34ca4c
SSDEEP

6144:55kVcVK6vWw0UGcZ0PHVF3Q9J5WgKvhpBaI:ycVKtwicZc169fWvhTaI

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  67337d02f07e6be80ec0041f2d48debee5a5c6197551ac3d0e21e02b17e674da
- Size
  
  284KB
- MD5
  
  192ada8ded31645f8c54e96e793417cb
- SHA1
  
  1943528aa0cde75d80cb16242b7d9139a2b37f39
- SHA256
  
  67337d02f07e6be80ec0041f2d48debee5a5c6197551ac3d0e21e02b17e674da
- SHA512
  
  e67d7b3f6341f2f100a3b302c8f99adeab5463299c6aa7f196e09973e920f6666346b08a455563b65d2cd06537bb4e9b319bc7501df5324308d96ed80d34ca4c
- SSDEEP
  
  6144:55kVcVK6vWw0UGcZ0PHVF3Q9J5WgKvhpBaI:ycVKtwicZc169fWvhTaI
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2