a3c399845e33b7ea1ece84ecdbe3724ef069ff2429cbbd3c292b5dfb1a815076 | Triage

Sharing

General

Target

a3c399845e33b7ea1ece84ecdbe3724ef069ff2429cbbd3c292b5dfb1a815076
Size

1.5MB
Sample

221204-dfg4vseg4w
MD5

87150f1823d978c6f64292f49a7fc476
SHA1

b83926e4f0799afc96e83e7521cc4b8fd266773b
SHA256

a3c399845e33b7ea1ece84ecdbe3724ef069ff2429cbbd3c292b5dfb1a815076
SHA512

91206bc6380145cbdf8bd361b83195a2109f1c4ce749566c852cf11c0557769e6cf83b800ffd4b220ccdde95908046c2713b901c96568a80cae5ee6a890cc26c
SSDEEP

24576:yy4e+kpDN5NoJndLG4mnAYYzWne8cJ3Jf3Zp1hXYAKhb/tKXH4JWZ9ZXm:ZTDL6bqYzWdcJ3tZpGztOsWnZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a3c399845e33b7ea1ece84ecdbe3724ef069ff2429cbbd3c292b5dfb1a815076
- Size
  
  1.5MB
- MD5
  
  87150f1823d978c6f64292f49a7fc476
- SHA1
  
  b83926e4f0799afc96e83e7521cc4b8fd266773b
- SHA256
  
  a3c399845e33b7ea1ece84ecdbe3724ef069ff2429cbbd3c292b5dfb1a815076
- SHA512
  
  91206bc6380145cbdf8bd361b83195a2109f1c4ce749566c852cf11c0557769e6cf83b800ffd4b220ccdde95908046c2713b901c96568a80cae5ee6a890cc26c
- SSDEEP
  
  24576:yy4e+kpDN5NoJndLG4mnAYYzWne8cJ3Jf3Zp1hXYAKhb/tKXH4JWZ9ZXm:ZTDL6bqYzWdcJ3tZpGztOsWnZ
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2