3ed7a239ba716214365a39793898c085c0f4dd838fed8f0229d88462db559857 | Triage

Sharing

General

Target

3ed7a239ba716214365a39793898c085c0f4dd838fed8f0229d88462db559857
Size

120KB
Sample

221123-vcfkasgf38
MD5

4b0deafcd4b691e0e573891162b56483
SHA1

e6c30cb98b89fd478b7117caffa02a1a12e84a09
SHA256

3ed7a239ba716214365a39793898c085c0f4dd838fed8f0229d88462db559857
SHA512

c97ced370db53336bd42a70a33f967eceb2cb77509a6e147790a03845aa97800743dd5f97342bcb20894bd713ec442a36489fec695c10f39f798a8e9628c11dc
SSDEEP

1536:iIdcFLZp0dsrYgdRAgH0/m38wIJVOy2JDVhCK8PTSuB:iIdcFLEdskgrt05bnwhVh6PTP

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3ed7a239ba716214365a39793898c085c0f4dd838fed8f0229d88462db559857
- Size
  
  120KB
- MD5
  
  4b0deafcd4b691e0e573891162b56483
- SHA1
  
  e6c30cb98b89fd478b7117caffa02a1a12e84a09
- SHA256
  
  3ed7a239ba716214365a39793898c085c0f4dd838fed8f0229d88462db559857
- SHA512
  
  c97ced370db53336bd42a70a33f967eceb2cb77509a6e147790a03845aa97800743dd5f97342bcb20894bd713ec442a36489fec695c10f39f798a8e9628c11dc
- SSDEEP
  
  1536:iIdcFLZp0dsrYgdRAgH0/m38wIJVOy2JDVhCK8PTSuB:iIdcFLEdskgrt05bnwhVh6PTP
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2