7d52e16ed7aef7f4523b9cb600f234bbfb4853c0b79b1764ee732477c05cd37d | Triage

Sharing

General

Target

7d52e16ed7aef7f4523b9cb600f234bbfb4853c0b79b1764ee732477c05cd37d
Size

302KB
Sample

221201-c4fp9sbe31
MD5

7f76de43cf2481ed9dc310baf3499290
SHA1

68e0bf6c58f32342d84ca90ff80b18829ada5957
SHA256

7d52e16ed7aef7f4523b9cb600f234bbfb4853c0b79b1764ee732477c05cd37d
SHA512

4140c22014a147a626a5552df22f8cfdb53ffab78000bfb61d6655c6f6010a9c9ce012634f1851b7a8538a70bc4eb601e8f1c11784ba977864a064b8d345f603
SSDEEP

6144:NJaxOE5IKGerVUGAGZp+uDOVcgLUTYBSddc9mnNFJ5pk:N8D5IKGGCyOVcgLJSddtZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7d52e16ed7aef7f4523b9cb600f234bbfb4853c0b79b1764ee732477c05cd37d
- Size
  
  302KB
- MD5
  
  7f76de43cf2481ed9dc310baf3499290
- SHA1
  
  68e0bf6c58f32342d84ca90ff80b18829ada5957
- SHA256
  
  7d52e16ed7aef7f4523b9cb600f234bbfb4853c0b79b1764ee732477c05cd37d
- SHA512
  
  4140c22014a147a626a5552df22f8cfdb53ffab78000bfb61d6655c6f6010a9c9ce012634f1851b7a8538a70bc4eb601e8f1c11784ba977864a064b8d345f603
- SSDEEP
  
  6144:NJaxOE5IKGerVUGAGZp+uDOVcgLUTYBSddc9mnNFJ5pk:N8D5IKGGCyOVcgLJSddtZ
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2