cad7a82a9b62893fe91f879be99ad582f9113ef5726c85a115effdb6b2571616 | Triage

Sharing

General

Target

cad7a82a9b62893fe91f879be99ad582f9113ef5726c85a115effdb6b2571616
Size

119KB
Sample

221203-fkvxmaff27
MD5

38a8553384ce564f6ef1e551ecdf42d0
SHA1

39035a968221109efb3c08ca1c35e0a175745092
SHA256

cad7a82a9b62893fe91f879be99ad582f9113ef5726c85a115effdb6b2571616
SHA512

17feb73a05b2d95ab16b1d8ab56041cf39668a45f1ed1a7c1f932660941b787148f641c3d14e2a762b9888aa04b3b4941cee4241f93b65fc63039979aa5c4d45
SSDEEP

1536:cLqMk/alSnyucRNI19X7/B7n2i680WmleFsJlA5XwymMSGIq63AOY6ytwmfbgCt:cLpvVucRNolBngJW4eFUGJXK5ytH

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cad7a82a9b62893fe91f879be99ad582f9113ef5726c85a115effdb6b2571616
- Size
  
  119KB
- MD5
  
  38a8553384ce564f6ef1e551ecdf42d0
- SHA1
  
  39035a968221109efb3c08ca1c35e0a175745092
- SHA256
  
  cad7a82a9b62893fe91f879be99ad582f9113ef5726c85a115effdb6b2571616
- SHA512
  
  17feb73a05b2d95ab16b1d8ab56041cf39668a45f1ed1a7c1f932660941b787148f641c3d14e2a762b9888aa04b3b4941cee4241f93b65fc63039979aa5c4d45
- SSDEEP
  
  1536:cLqMk/alSnyucRNI19X7/B7n2i680WmleFsJlA5XwymMSGIq63AOY6ytwmfbgCt:cLpvVucRNolBngJW4eFUGJXK5ytH
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2