75827179466c3f8143d0cecec8d5f7f72b48bdb45bf2f1de686dc76d49db0dac | Triage

Sharing

General

Target

75827179466c3f8143d0cecec8d5f7f72b48bdb45bf2f1de686dc76d49db0dac
Size

333KB
Sample

221201-dmra4sdb41
MD5

8ab81c09d50cc8fa7ad00c23e88d128b
SHA1

eb3af02a8df7ff43a5f22f74638b06565467fb1c
SHA256

75827179466c3f8143d0cecec8d5f7f72b48bdb45bf2f1de686dc76d49db0dac
SHA512

6da260681974a40daa9ddb504db76d9e45683fa0b76fd37253aba45631e0448bace94154bf87d22e256e9ff9c006731ef1a20f50b0100d18b44098430b422989
SSDEEP

6144:Gakbk7cFfaNqqIvJXLe410Wb3/rqvahRtgzdunXgfCz9bwBWmPEOTlX9nvbwXq5U:7ko0xjlmAtodunXSY9bwRP9X9n0IU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  75827179466c3f8143d0cecec8d5f7f72b48bdb45bf2f1de686dc76d49db0dac
- Size
  
  333KB
- MD5
  
  8ab81c09d50cc8fa7ad00c23e88d128b
- SHA1
  
  eb3af02a8df7ff43a5f22f74638b06565467fb1c
- SHA256
  
  75827179466c3f8143d0cecec8d5f7f72b48bdb45bf2f1de686dc76d49db0dac
- SHA512
  
  6da260681974a40daa9ddb504db76d9e45683fa0b76fd37253aba45631e0448bace94154bf87d22e256e9ff9c006731ef1a20f50b0100d18b44098430b422989
- SSDEEP
  
  6144:Gakbk7cFfaNqqIvJXLe410Wb3/rqvahRtgzdunXgfCz9bwBWmPEOTlX9nvbwXq5U:7ko0xjlmAtodunXSY9bwRP9X9n0IU
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2