a82ac7439d8b81cea17c1ddc09f99e606f9baebaca70821acc35bc84b6653829 | Triage

Sharing

General

Target

a82ac7439d8b81cea17c1ddc09f99e606f9baebaca70821acc35bc84b6653829
Size

63KB
Sample

221201-s5rf6agc9y
MD5

a94ee8fae54514eda3b0276453a6fb52
SHA1

bd676c5336f18f94e928868a6824b70d2111193d
SHA256

a82ac7439d8b81cea17c1ddc09f99e606f9baebaca70821acc35bc84b6653829
SHA512

c84f130384b227157f1c36be304dda3cc64c8d8bd41d81a2fef77540ff9ffbf74af15b50b1b6dfd437510993ddf6f973771413e3ae68fd0c33a81ea724bc6d4d
SSDEEP

1536:f3CKsatliGykj2OycDM1GRWFwKJ1OzybJcb/nv06Sh5IM3:/LrlTj2O7gQWKKJ1AyCX0NCc

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a82ac7439d8b81cea17c1ddc09f99e606f9baebaca70821acc35bc84b6653829
- Size
  
  63KB
- MD5
  
  a94ee8fae54514eda3b0276453a6fb52
- SHA1
  
  bd676c5336f18f94e928868a6824b70d2111193d
- SHA256
  
  a82ac7439d8b81cea17c1ddc09f99e606f9baebaca70821acc35bc84b6653829
- SHA512
  
  c84f130384b227157f1c36be304dda3cc64c8d8bd41d81a2fef77540ff9ffbf74af15b50b1b6dfd437510993ddf6f973771413e3ae68fd0c33a81ea724bc6d4d
- SSDEEP
  
  1536:f3CKsatliGykj2OycDM1GRWFwKJ1OzybJcb/nv06Sh5IM3:/LrlTj2O7gQWKKJ1AyCX0NCc
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2