c3939ae239163bca4ba8696409939f843f4c97f6321eb18d5c81fd72ae094642 | Triage

Sharing

General

Target

c3939ae239163bca4ba8696409939f843f4c97f6321eb18d5c81fd72ae094642
Size

123KB
Sample

221123-sy2csace88
MD5

160675d15a6d5e4fcb0220815e6fd071
SHA1

c21ef14eb801b4d2ab1dae9de23ec7354568389c
SHA256

c3939ae239163bca4ba8696409939f843f4c97f6321eb18d5c81fd72ae094642
SHA512

286882c6ff931865d0d0109146bf6a2cdf4b6aa847020cb36b65a2769732935dc47bd8b5e7a68b1a07fc03bce33a76100fb07a1f3003272532a3a2cb01821ffa
SSDEEP

1536:rPQF0dTvGsg5N2jQ6Wv/1Mqtg3lWXffwsZE9K2/CKA+pOFIUl/t4V9ozB158YI:rQ0dj4QQhv/6c8UwBs8CWpo4Vmz18YI

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c3939ae239163bca4ba8696409939f843f4c97f6321eb18d5c81fd72ae094642
- Size
  
  123KB
- MD5
  
  160675d15a6d5e4fcb0220815e6fd071
- SHA1
  
  c21ef14eb801b4d2ab1dae9de23ec7354568389c
- SHA256
  
  c3939ae239163bca4ba8696409939f843f4c97f6321eb18d5c81fd72ae094642
- SHA512
  
  286882c6ff931865d0d0109146bf6a2cdf4b6aa847020cb36b65a2769732935dc47bd8b5e7a68b1a07fc03bce33a76100fb07a1f3003272532a3a2cb01821ffa
- SSDEEP
  
  1536:rPQF0dTvGsg5N2jQ6Wv/1Mqtg3lWXffwsZE9K2/CKA+pOFIUl/t4V9ozB158YI:rQ0dj4QQhv/6c8UwBs8CWpo4Vmz18YI
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2