a7ee5d1baf275080e6a1cea39a58cc6d23fb376493d9e9235a7701ecc685bb99 | Triage

Sharing

General

Target

a7ee5d1baf275080e6a1cea39a58cc6d23fb376493d9e9235a7701ecc685bb99
Size

96KB
Sample

221201-l4b7hsge24
MD5

7ce253dcd17f3d74ab551180c31b5507
SHA1

42bcfb1820ae870695e80cd64aab651eb680abe7
SHA256

a7ee5d1baf275080e6a1cea39a58cc6d23fb376493d9e9235a7701ecc685bb99
SHA512

13afe13d1d8e489d5ceed51882856c62f939ea19aa4317f55a41fa0ade8fdea46e757ba9cdbb8a3b16cbe2870fdbd4619b2788d91c65a45894e80a798c65a99c
SSDEEP

1536:fkC0VdyQo4huTbZV2dNk2cJywQi+zWyIoL7pAtkf6qn2iLnnk30foAyiNr/:qoQoKuHD2DcJyc+zWRGGtnEIyoAyC/

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a7ee5d1baf275080e6a1cea39a58cc6d23fb376493d9e9235a7701ecc685bb99
- Size
  
  96KB
- MD5
  
  7ce253dcd17f3d74ab551180c31b5507
- SHA1
  
  42bcfb1820ae870695e80cd64aab651eb680abe7
- SHA256
  
  a7ee5d1baf275080e6a1cea39a58cc6d23fb376493d9e9235a7701ecc685bb99
- SHA512
  
  13afe13d1d8e489d5ceed51882856c62f939ea19aa4317f55a41fa0ade8fdea46e757ba9cdbb8a3b16cbe2870fdbd4619b2788d91c65a45894e80a798c65a99c
- SSDEEP
  
  1536:fkC0VdyQo4huTbZV2dNk2cJywQi+zWyIoL7pAtkf6qn2iLnnk30foAyiNr/:qoQoKuHD2DcJyc+zWRGGtnEIyoAyC/
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2