a07496807c7705211761ef004af183a8daad672cead85a3d273346be600a7bd5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a07496807c7705211761ef004af183a8daad672cead85a3d273346be600a7bd5
Size

136KB
Sample

221203-ty4nksbb7s
MD5

ac73810d87cd0c07154e3e1cdf613f46
SHA1

bb49bc022967e956fd854fd361b4e4c15c35dddd
SHA256

a07496807c7705211761ef004af183a8daad672cead85a3d273346be600a7bd5
SHA512

4fcf7eaac0d36b3b10f84930d4a349607fc568511a2de2225011d967aa0619ec8e4d0c64b11a68511ff73076ab1a0ad16a8f54e26bba635dd240b1c9651593fc
SSDEEP

1536:fMVDsEe+yoBaVzlhNCg6k3j5kgOXUq+rtQ/QQkAT9TmY+R6rk3qZOPf:kplyoBaVphV6AtkgOXUqaaF9Tmb6yf

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a07496807c7705211761ef004af183a8daad672cead85a3d273346be600a7bd5
- Size
  
  136KB
- MD5
  
  ac73810d87cd0c07154e3e1cdf613f46
- SHA1
  
  bb49bc022967e956fd854fd361b4e4c15c35dddd
- SHA256
  
  a07496807c7705211761ef004af183a8daad672cead85a3d273346be600a7bd5
- SHA512
  
  4fcf7eaac0d36b3b10f84930d4a349607fc568511a2de2225011d967aa0619ec8e4d0c64b11a68511ff73076ab1a0ad16a8f54e26bba635dd240b1c9651593fc
- SSDEEP
  
  1536:fMVDsEe+yoBaVzlhNCg6k3j5kgOXUq+rtQ/QQkAT9TmY+R6rk3qZOPf:kplyoBaVphV6AtkgOXUqaaF9Tmb6yf
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2