61ae2acb30b4aff875127705e9dcaab2434621e10abc201d62075316a1fab07d | Triage

Sharing

General

Target

61ae2acb30b4aff875127705e9dcaab2434621e10abc201d62075316a1fab07d
Size

407KB
Sample

221124-pjw8qsdb34
MD5

a415c0cf65f18d3024e670254a0439de
SHA1

bb9316092f85ab4c39ce072935a33bdfb5b66d0f
SHA256

61ae2acb30b4aff875127705e9dcaab2434621e10abc201d62075316a1fab07d
SHA512

c2d0709372100bc25349f6b5b949ec0e163d4e6229e8b0e611fe56104f346028bd679f1ee74aab4e56c8bce262a39e64c69f7d313331341198e66e9e0a71bfa9
SSDEEP

6144:ivKud9DhiNsmtlf2TYe4iPC02HUlm6BYaDixB:ioz2TD4iPC1HUlm6BYa+B

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  61ae2acb30b4aff875127705e9dcaab2434621e10abc201d62075316a1fab07d
- Size
  
  407KB
- MD5
  
  a415c0cf65f18d3024e670254a0439de
- SHA1
  
  bb9316092f85ab4c39ce072935a33bdfb5b66d0f
- SHA256
  
  61ae2acb30b4aff875127705e9dcaab2434621e10abc201d62075316a1fab07d
- SHA512
  
  c2d0709372100bc25349f6b5b949ec0e163d4e6229e8b0e611fe56104f346028bd679f1ee74aab4e56c8bce262a39e64c69f7d313331341198e66e9e0a71bfa9
- SSDEEP
  
  6144:ivKud9DhiNsmtlf2TYe4iPC02HUlm6BYaDixB:ioz2TD4iPC1HUlm6BYa+B
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2