ccba12127834c43a3a78f4c1c22a3a5233dda08631dde762bf0ab3451eb4699f | Triage

Sharing

General

Target

ccba12127834c43a3a78f4c1c22a3a5233dda08631dde762bf0ab3451eb4699f
Size

268KB
Sample

221123-tcahlsgf9y
MD5

81ee65b94a361f37c560b8c1a57f502b
SHA1

27ad2f307bc46c4c210bc1f9218cd2625c3bb1be
SHA256

ccba12127834c43a3a78f4c1c22a3a5233dda08631dde762bf0ab3451eb4699f
SHA512

84b6f4cc675e2eabcfcf36d1b0be0e25ccb14c579d2ea27d9427dd755e5f19508e1962dddade62c66ca3016270b2e2ce4de4a45fc783e30ad7babe7efd0c562a
SSDEEP

6144:2Ph8UWCp6ygCsTHzrrp3zMvEuFsSgnJE90/dtRl8Fl:2PVgC6lDMEuF3OEC/dtRlCl

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ccba12127834c43a3a78f4c1c22a3a5233dda08631dde762bf0ab3451eb4699f
- Size
  
  268KB
- MD5
  
  81ee65b94a361f37c560b8c1a57f502b
- SHA1
  
  27ad2f307bc46c4c210bc1f9218cd2625c3bb1be
- SHA256
  
  ccba12127834c43a3a78f4c1c22a3a5233dda08631dde762bf0ab3451eb4699f
- SHA512
  
  84b6f4cc675e2eabcfcf36d1b0be0e25ccb14c579d2ea27d9427dd755e5f19508e1962dddade62c66ca3016270b2e2ce4de4a45fc783e30ad7babe7efd0c562a
- SSDEEP
  
  6144:2Ph8UWCp6ygCsTHzrrp3zMvEuFsSgnJE90/dtRl8Fl:2PVgC6lDMEuF3OEC/dtRlCl
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2