abe8f7de9741c4a156f560fb0dc11ecbac07919c27a4abf88c2525e1d314517f | Triage

Sharing

General

Target

abe8f7de9741c4a156f560fb0dc11ecbac07919c27a4abf88c2525e1d314517f
Size

56KB
Sample

221203-xprt7sbd51
MD5

0b8b17a617b6c205633b1ac80ecc3f5d
SHA1

2c6edcb78c8487cc46065580a31d3544e54328a7
SHA256

abe8f7de9741c4a156f560fb0dc11ecbac07919c27a4abf88c2525e1d314517f
SHA512

3c081b8e01c1d0aba1ed679dbf4ca086facfdf4edaac51c90b24a43fea4f17ff5c43367bb4a95f01c5a28c4cb80fab2379be8a7578a77d665280ee883141a49a
SSDEEP

1536:ZwukcsdF0XR0YafoBsXJ+CW82hbI/K1uKDTlv9+u:qukddF6R5afWuL61TXiu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  abe8f7de9741c4a156f560fb0dc11ecbac07919c27a4abf88c2525e1d314517f
- Size
  
  56KB
- MD5
  
  0b8b17a617b6c205633b1ac80ecc3f5d
- SHA1
  
  2c6edcb78c8487cc46065580a31d3544e54328a7
- SHA256
  
  abe8f7de9741c4a156f560fb0dc11ecbac07919c27a4abf88c2525e1d314517f
- SHA512
  
  3c081b8e01c1d0aba1ed679dbf4ca086facfdf4edaac51c90b24a43fea4f17ff5c43367bb4a95f01c5a28c4cb80fab2379be8a7578a77d665280ee883141a49a
- SSDEEP
  
  1536:ZwukcsdF0XR0YafoBsXJ+CW82hbI/K1uKDTlv9+u:qukddF6R5afWuL61TXiu
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2