76fda38844994b8426f1c54ea9088590bf726deb0adc6840016d498303b47863 | Triage

Sharing

General

Target

76fda38844994b8426f1c54ea9088590bf726deb0adc6840016d498303b47863
Size

292KB
Sample

221123-q85f3sba3y
MD5

c3e115ea525f4202ed2e945269d50f38
SHA1

7fcc872227e97394f71163cf52050835287d7e6c
SHA256

76fda38844994b8426f1c54ea9088590bf726deb0adc6840016d498303b47863
SHA512

f0eb51951f6de6767ce80c782c868738732cb6935e9a3ccf15818a32b2ee436092268f5c18dc1a4e0d93a701e9a7550b65cb3beef7656bf1ac6e728c3fd873f4
SSDEEP

6144:dDXUje2+6SbP3P0/yGtjtep28DOUj2XV/1fGb/QvPNyWTI:9XUjH+pP0RBtW2m3cV/4TQvLT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  76fda38844994b8426f1c54ea9088590bf726deb0adc6840016d498303b47863
- Size
  
  292KB
- MD5
  
  c3e115ea525f4202ed2e945269d50f38
- SHA1
  
  7fcc872227e97394f71163cf52050835287d7e6c
- SHA256
  
  76fda38844994b8426f1c54ea9088590bf726deb0adc6840016d498303b47863
- SHA512
  
  f0eb51951f6de6767ce80c782c868738732cb6935e9a3ccf15818a32b2ee436092268f5c18dc1a4e0d93a701e9a7550b65cb3beef7656bf1ac6e728c3fd873f4
- SSDEEP
  
  6144:dDXUje2+6SbP3P0/yGtjtep28DOUj2XV/1fGb/QvPNyWTI:9XUjH+pP0RBtW2m3cV/4TQvLT
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2