730243200dcf1c2bb4af6de8cc6714ec18e0953552558ab2f16f9f5333d10a7e | Triage

Sharing

General

Target

730243200dcf1c2bb4af6de8cc6714ec18e0953552558ab2f16f9f5333d10a7e
Size

454KB
Sample

221201-d3xg3aed6t
MD5

4ed3ce2511f5c6aa47e9d24add6bed61
SHA1

7ad0e32073ae935a26a7f2619581a5c0295a6ddb
SHA256

730243200dcf1c2bb4af6de8cc6714ec18e0953552558ab2f16f9f5333d10a7e
SHA512

8a056eec53346ad45b48eea2c9349f821aa0cb692d79772f14270a30d21b9fa18fdffedace436be70d21e658017d057810e954561b79ffef9ac72b9f204fb531
SSDEEP

6144:o2Kgo6ZWWeT0v1hX9ExB7xAybCBxm6Dn9zonpOiqHZOGMu6wEe3:o96ZWWx237+ybGNonppyZOGMRwEe

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  730243200dcf1c2bb4af6de8cc6714ec18e0953552558ab2f16f9f5333d10a7e
- Size
  
  454KB
- MD5
  
  4ed3ce2511f5c6aa47e9d24add6bed61
- SHA1
  
  7ad0e32073ae935a26a7f2619581a5c0295a6ddb
- SHA256
  
  730243200dcf1c2bb4af6de8cc6714ec18e0953552558ab2f16f9f5333d10a7e
- SHA512
  
  8a056eec53346ad45b48eea2c9349f821aa0cb692d79772f14270a30d21b9fa18fdffedace436be70d21e658017d057810e954561b79ffef9ac72b9f204fb531
- SSDEEP
  
  6144:o2Kgo6ZWWeT0v1hX9ExB7xAybCBxm6Dn9zonpOiqHZOGMu6wEe3:o96ZWWx237+ybGNonppyZOGMRwEe
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2