88e56de48e4234d44d68cad33b4173003505a23be4c6681f2c4390d8a9b7d13a | Triage

Sharing

General

Target

88e56de48e4234d44d68cad33b4173003505a23be4c6681f2c4390d8a9b7d13a
Size

314KB
Sample

221123-q2csgsad91
MD5

88cec7ee32c69ec345641457b99fa642
SHA1

2319981e0ddcd42473b66e8140b4da21bf174de5
SHA256

88e56de48e4234d44d68cad33b4173003505a23be4c6681f2c4390d8a9b7d13a
SHA512

7994f1042a8d0c2eab589cff94ca6429dddcae73d4b8d6118f172175e329b6af6bdf7ee6be077873099a1021b84e73d0c8182ec757997974a2191e8de89afb27
SSDEEP

6144:ljGfV+EP4+FT+U0jLL/RmRxjuJHXI0u0+4c3+L:1GfV+U+U0jP5mRxCHX6T3K

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  88e56de48e4234d44d68cad33b4173003505a23be4c6681f2c4390d8a9b7d13a
- Size
  
  314KB
- MD5
  
  88cec7ee32c69ec345641457b99fa642
- SHA1
  
  2319981e0ddcd42473b66e8140b4da21bf174de5
- SHA256
  
  88e56de48e4234d44d68cad33b4173003505a23be4c6681f2c4390d8a9b7d13a
- SHA512
  
  7994f1042a8d0c2eab589cff94ca6429dddcae73d4b8d6118f172175e329b6af6bdf7ee6be077873099a1021b84e73d0c8182ec757997974a2191e8de89afb27
- SSDEEP
  
  6144:ljGfV+EP4+FT+U0jLL/RmRxjuJHXI0u0+4c3+L:1GfV+U+U0jP5mRxCHX6T3K
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2