d7959c8cb6f50710a5164c32bc34ebff0c5849f716384b5efdaec69d93a114e4 | Triage

Sharing

General

Target

d7959c8cb6f50710a5164c32bc34ebff0c5849f716384b5efdaec69d93a114e4
Size

283KB
Sample

221203-pgzk3saa52
MD5

2efea9596045641712926fe29260bb80
SHA1

643f26d24bb53a8975d73b7ba56614eb9bab86e0
SHA256

d7959c8cb6f50710a5164c32bc34ebff0c5849f716384b5efdaec69d93a114e4
SHA512

84854e8ea56badb6919e6ac829798a6d81da5653ca0714dd95ffd183e8df76972542c7e3097077b313ce7ea5f15533a983c391988a7e6fe0b85b78afa8b15875
SSDEEP

6144:vu2urzh9xu/XkauCCE6mm1zt6KoscnB5Aru9vAC68Vu1OQ:vutrzh9xOXkE/m1zEKoscB5Ay9oCM1F

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d7959c8cb6f50710a5164c32bc34ebff0c5849f716384b5efdaec69d93a114e4
- Size
  
  283KB
- MD5
  
  2efea9596045641712926fe29260bb80
- SHA1
  
  643f26d24bb53a8975d73b7ba56614eb9bab86e0
- SHA256
  
  d7959c8cb6f50710a5164c32bc34ebff0c5849f716384b5efdaec69d93a114e4
- SHA512
  
  84854e8ea56badb6919e6ac829798a6d81da5653ca0714dd95ffd183e8df76972542c7e3097077b313ce7ea5f15533a983c391988a7e6fe0b85b78afa8b15875
- SSDEEP
  
  6144:vu2urzh9xu/XkauCCE6mm1zt6KoscnB5Aru9vAC68Vu1OQ:vutrzh9xOXkE/m1zEKoscB5Ay9oCM1F
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2