c39879a479e0871efe2eb6724ed0342bb29f42f0677a56b84bde860c3bd16142 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c39879a479e0871efe2eb6724ed0342bb29f42f0677a56b84bde860c3bd16142
Size

96KB
Sample

221201-l5c57sca8z
MD5

105002807ce3560d5bf46b3c1d6eea91
SHA1

95179c3cbee3863b790de26606fa40b3b84fc25d
SHA256

c39879a479e0871efe2eb6724ed0342bb29f42f0677a56b84bde860c3bd16142
SHA512

6fc99a536ec28afe8fa3d4b15cc523bbafde5467939704033377e60507c8e1e7a97eb221938c28032b00179748bce645dc5c2b7ab89abf411b2b4a325f27b5f4
SSDEEP

1536:J8fGHUrKRtrhcamH7XVkEmiSngrR92SjuJ7cPcj3CnisY3A2ro4dxti/:8GH2KRXc3blXmtnitjuJG6SisYQT4b4/

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c39879a479e0871efe2eb6724ed0342bb29f42f0677a56b84bde860c3bd16142
- Size
  
  96KB
- MD5
  
  105002807ce3560d5bf46b3c1d6eea91
- SHA1
  
  95179c3cbee3863b790de26606fa40b3b84fc25d
- SHA256
  
  c39879a479e0871efe2eb6724ed0342bb29f42f0677a56b84bde860c3bd16142
- SHA512
  
  6fc99a536ec28afe8fa3d4b15cc523bbafde5467939704033377e60507c8e1e7a97eb221938c28032b00179748bce645dc5c2b7ab89abf411b2b4a325f27b5f4
- SSDEEP
  
  1536:J8fGHUrKRtrhcamH7XVkEmiSngrR92SjuJ7cPcj3CnisY3A2ro4dxti/:8GH2KRXc3blXmtnitjuJG6SisYQT4b4/
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2