76c90a0b9eb3be69885975becb54ba808dc57413ed68ce4b7d5afbd460ed51de | Triage

Sharing

General

Target

76c90a0b9eb3be69885975becb54ba808dc57413ed68ce4b7d5afbd460ed51de
Size

298KB
Sample

221203-cnbrdaaa5v
MD5

829e0ad3103a281fd798f2df793dd39b
SHA1

f83e690b914331f59915d5ff3f290431dc0dcbd2
SHA256

76c90a0b9eb3be69885975becb54ba808dc57413ed68ce4b7d5afbd460ed51de
SHA512

c90527b600f15215ebebdc4b208a6ae758bb662894e24ae7c9c69ea64fa4c1b21f52448ae389662def170f62e2752ce3f980349495771155d8129b57fca25b3a
SSDEEP

6144:FQ8uksvUGxVVeDa0t8EYkJECEMnj05RoWfvh8EybgjmT72bA22g9:O8KVVeDaZEL7/joRoDjUhA2

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  76c90a0b9eb3be69885975becb54ba808dc57413ed68ce4b7d5afbd460ed51de
- Size
  
  298KB
- MD5
  
  829e0ad3103a281fd798f2df793dd39b
- SHA1
  
  f83e690b914331f59915d5ff3f290431dc0dcbd2
- SHA256
  
  76c90a0b9eb3be69885975becb54ba808dc57413ed68ce4b7d5afbd460ed51de
- SHA512
  
  c90527b600f15215ebebdc4b208a6ae758bb662894e24ae7c9c69ea64fa4c1b21f52448ae389662def170f62e2752ce3f980349495771155d8129b57fca25b3a
- SSDEEP
  
  6144:FQ8uksvUGxVVeDa0t8EYkJECEMnj05RoWfvh8EybgjmT72bA22g9:O8KVVeDaZEL7/joRoDjUhA2
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2