8addc46a1e996f780e9b2725a82cc2c6d59ce1f36cd1ba65167c92c933aacd19 | Triage

Sharing

General

Target

8addc46a1e996f780e9b2725a82cc2c6d59ce1f36cd1ba65167c92c933aacd19
Size

104KB
Sample

221124-jkkcnshe38
MD5

b8997772ff477520de562d39b9a09b22
SHA1

67915490d3ff1e3bab7d64b70baa556337eea8fe
SHA256

8addc46a1e996f780e9b2725a82cc2c6d59ce1f36cd1ba65167c92c933aacd19
SHA512

29e4a35b8eb4ddfc8b462c2d4f58cd0c268dd37f2b2594bb3a03e09b1b0c1b64b30fae57c2dcfa55ee7d2a2180796455d473ba21317c8e7683935c21b1cb1859
SSDEEP

3072:4gXdZt9P6D3XJcM8kR7PGszZueuCURNi66DxKP13Lvl:4e34f8kRygZuD9RNi68xI1rl

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8addc46a1e996f780e9b2725a82cc2c6d59ce1f36cd1ba65167c92c933aacd19
- Size
  
  104KB
- MD5
  
  b8997772ff477520de562d39b9a09b22
- SHA1
  
  67915490d3ff1e3bab7d64b70baa556337eea8fe
- SHA256
  
  8addc46a1e996f780e9b2725a82cc2c6d59ce1f36cd1ba65167c92c933aacd19
- SHA512
  
  29e4a35b8eb4ddfc8b462c2d4f58cd0c268dd37f2b2594bb3a03e09b1b0c1b64b30fae57c2dcfa55ee7d2a2180796455d473ba21317c8e7683935c21b1cb1859
- SSDEEP
  
  3072:4gXdZt9P6D3XJcM8kR7PGszZueuCURNi66DxKP13Lvl:4e34f8kRygZuD9RNi68xI1rl
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2