b7cddd84ff408709f7b0106fbd718b59fc80daa310b55871d90ab5dd9a8d7a83 | Triage

Sharing

General

Target

b7cddd84ff408709f7b0106fbd718b59fc80daa310b55871d90ab5dd9a8d7a83
Size

132KB
Sample

221203-rza2jsdb31
MD5

2f95f30cc02279df7ce05f294c3c226b
SHA1

a698dcc2a08b774871918748996733c242639d72
SHA256

b7cddd84ff408709f7b0106fbd718b59fc80daa310b55871d90ab5dd9a8d7a83
SHA512

63f0a35b7c30a70393214db7775c4ab78d920ac2585e5723c9996bbfea37772727d3e39be837916b69e8270dbb2a08bdc9ce2173bd02386cc1fc3461a018ea69
SSDEEP

1536:yUnYr5dYbuVjajSjJm95llPFct+faAoUt+Qeg6TKVbXNXaBwpkzeqHaQvMzhzYPS:PnjbSVylFctTB9utwwGraQIBYPS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b7cddd84ff408709f7b0106fbd718b59fc80daa310b55871d90ab5dd9a8d7a83
- Size
  
  132KB
- MD5
  
  2f95f30cc02279df7ce05f294c3c226b
- SHA1
  
  a698dcc2a08b774871918748996733c242639d72
- SHA256
  
  b7cddd84ff408709f7b0106fbd718b59fc80daa310b55871d90ab5dd9a8d7a83
- SHA512
  
  63f0a35b7c30a70393214db7775c4ab78d920ac2585e5723c9996bbfea37772727d3e39be837916b69e8270dbb2a08bdc9ce2173bd02386cc1fc3461a018ea69
- SSDEEP
  
  1536:yUnYr5dYbuVjajSjJm95llPFct+faAoUt+Qeg6TKVbXNXaBwpkzeqHaQvMzhzYPS:PnjbSVylFctTB9utwwGraQIBYPS
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2