3982c767d814e68cb965d6c33acb9ffa7f844a9d5aa9a02b22014ee3875f1a74 | Triage

Sharing

General

Target

3982c767d814e68cb965d6c33acb9ffa7f844a9d5aa9a02b22014ee3875f1a74
Size

138KB
Sample

221123-lrc82sfe21
MD5

a9f1463eff20e510692df682d038b684
SHA1

78c8fbee393c44076fbd83964710a376accf3069
SHA256

3982c767d814e68cb965d6c33acb9ffa7f844a9d5aa9a02b22014ee3875f1a74
SHA512

e72d3ab0698309322660b010b0a3adecc363e2a46fb9b36331c28fb51accff498a51c15ad578577853434980ae84cf7b6a14e746af6f91c2757c58254be5400c
SSDEEP

3072:/caqyte6GV77snHLLxtByaXOqdPNbnhW4IxZx5kCZuubFrhU1wKKrONmg:/caBtw77snHRCY7PNNW4IxZ7zbC0rONV

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3982c767d814e68cb965d6c33acb9ffa7f844a9d5aa9a02b22014ee3875f1a74
- Size
  
  138KB
- MD5
  
  a9f1463eff20e510692df682d038b684
- SHA1
  
  78c8fbee393c44076fbd83964710a376accf3069
- SHA256
  
  3982c767d814e68cb965d6c33acb9ffa7f844a9d5aa9a02b22014ee3875f1a74
- SHA512
  
  e72d3ab0698309322660b010b0a3adecc363e2a46fb9b36331c28fb51accff498a51c15ad578577853434980ae84cf7b6a14e746af6f91c2757c58254be5400c
- SSDEEP
  
  3072:/caqyte6GV77snHLLxtByaXOqdPNbnhW4IxZx5kCZuubFrhU1wKKrONmg:/caBtw77snHRCY7PNNW4IxZ7zbC0rONV
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2