d768894f9959c3feb3588e737a8581a76535220cb8d550b0272aba13926a03f4 | Triage

Sharing

General

Target

d768894f9959c3feb3588e737a8581a76535220cb8d550b0272aba13926a03f4
Size

411KB
Sample

221201-vhjh5sda2s
MD5

d60834c15d6f7f934f490ba86cdabe67
SHA1

3c2bc5eadbbdaa4bcc2f20df4e7a2c2105dd83b7
SHA256

d768894f9959c3feb3588e737a8581a76535220cb8d550b0272aba13926a03f4
SHA512

46cdbe31c4fb3a255c2cb292fc13e3a409de481d9f69c19900713f132482c4768136d4f2f0fcf6a6f155802815c19d2add47feeeec51c3051ac32555ced43f90
SSDEEP

6144:9GK72n5/Ud/JuoWrJ8/wzGn/N5H3iHNzVNx3dKn:9pe5MV1WrJtC5XszVNx3dKn

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d768894f9959c3feb3588e737a8581a76535220cb8d550b0272aba13926a03f4
- Size
  
  411KB
- MD5
  
  d60834c15d6f7f934f490ba86cdabe67
- SHA1
  
  3c2bc5eadbbdaa4bcc2f20df4e7a2c2105dd83b7
- SHA256
  
  d768894f9959c3feb3588e737a8581a76535220cb8d550b0272aba13926a03f4
- SHA512
  
  46cdbe31c4fb3a255c2cb292fc13e3a409de481d9f69c19900713f132482c4768136d4f2f0fcf6a6f155802815c19d2add47feeeec51c3051ac32555ced43f90
- SSDEEP
  
  6144:9GK72n5/Ud/JuoWrJ8/wzGn/N5H3iHNzVNx3dKn:9pe5MV1WrJtC5XszVNx3dKn
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2