a4c536071ccb6541f5a96553eaf21f972aec5a2870962f65ef62586c36bb17c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4c536071ccb6541f5a96553eaf21f972aec5a2870962f65ef62586c36bb17c0
Size

395KB
Sample

221202-1w6tgscd81
MD5

c7a123cf40d5b9d79dada4c8e4203f4a
SHA1

1e2a5b41f1f8dbe53c0106ec5014cdf4bfd03975
SHA256

a4c536071ccb6541f5a96553eaf21f972aec5a2870962f65ef62586c36bb17c0
SHA512

00005415246b5a87cdf1f81a8da73793fd3dcc119f879757ad94d44657928a0db10a4b2c9f8d65a7a592d554757e4e800d87d288d1a9c8aa93a45d4a05404b68
SSDEEP

6144:93Pv37J3F/D2yTKQkkBWDG/J4hiV5KNL6d5PC78xjXv5Tiq:937VZmQqAPD0sjf5Tiq

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a4c536071ccb6541f5a96553eaf21f972aec5a2870962f65ef62586c36bb17c0
- Size
  
  395KB
- MD5
  
  c7a123cf40d5b9d79dada4c8e4203f4a
- SHA1
  
  1e2a5b41f1f8dbe53c0106ec5014cdf4bfd03975
- SHA256
  
  a4c536071ccb6541f5a96553eaf21f972aec5a2870962f65ef62586c36bb17c0
- SHA512
  
  00005415246b5a87cdf1f81a8da73793fd3dcc119f879757ad94d44657928a0db10a4b2c9f8d65a7a592d554757e4e800d87d288d1a9c8aa93a45d4a05404b68
- SSDEEP
  
  6144:93Pv37J3F/D2yTKQkkBWDG/J4hiV5KNL6d5PC78xjXv5Tiq:937VZmQqAPD0sjf5Tiq
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2