9680c5a21334779e858c88dd01d35fafedd2d359080f813771f8de8c55dca811 | Triage

Sharing

General

Target

9680c5a21334779e858c88dd01d35fafedd2d359080f813771f8de8c55dca811
Size

284KB
Sample

221123-qwkwxafa45
MD5

d4bada7dc36cecb9103aa0c4c3da86ec
SHA1

5b79c30842bdbddbea7c06b224c4f56cc49cd904
SHA256

9680c5a21334779e858c88dd01d35fafedd2d359080f813771f8de8c55dca811
SHA512

927e0659d12df7cf28bf491649df69fae5245f4a642c44e932646e5a7f1d2d07eb398946c2b1ab964cf92de5418c8b9b7e4ec207414db6e50f819c042f8ec9bf
SSDEEP

6144:nrGy4dp5EUQmsBglXEOPdn/oocj+bjmmYVSx6Le46u+LqduD:nx4dp5Fyq39QryYMx6LyKw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9680c5a21334779e858c88dd01d35fafedd2d359080f813771f8de8c55dca811
- Size
  
  284KB
- MD5
  
  d4bada7dc36cecb9103aa0c4c3da86ec
- SHA1
  
  5b79c30842bdbddbea7c06b224c4f56cc49cd904
- SHA256
  
  9680c5a21334779e858c88dd01d35fafedd2d359080f813771f8de8c55dca811
- SHA512
  
  927e0659d12df7cf28bf491649df69fae5245f4a642c44e932646e5a7f1d2d07eb398946c2b1ab964cf92de5418c8b9b7e4ec207414db6e50f819c042f8ec9bf
- SSDEEP
  
  6144:nrGy4dp5EUQmsBglXEOPdn/oocj+bjmmYVSx6Le46u+LqduD:nx4dp5Fyq39QryYMx6LyKw
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2