463d6f48295dbf12f97549814b20facef94684247fc250a98f6546c76be7e21c | Triage

Sharing

General

Target

463d6f48295dbf12f97549814b20facef94684247fc250a98f6546c76be7e21c
Size

298KB
Sample

221204-jrtvpaea9v
MD5

eeecff7b4c01b63c03e0a31aa814c016
SHA1

8faec0d274677c9a9fa8610d3603c1423fd4765e
SHA256

463d6f48295dbf12f97549814b20facef94684247fc250a98f6546c76be7e21c
SHA512

6ee444f4ed5159f904f2bf99c611a21a258b38de72ebfe42666857def33b5686d78ecf16a80b842347d3d97d54162d8d9e4c40098345c4230d99cc108f8e4b49
SSDEEP

6144:PZDPnPsHhCC7fSxXBSXkr17rFfv7duydTmU0BXe5aRucLXEWhcX4s0l/:ZPnP0EXcUtTuE8u5/cQWhcX475

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  463d6f48295dbf12f97549814b20facef94684247fc250a98f6546c76be7e21c
- Size
  
  298KB
- MD5
  
  eeecff7b4c01b63c03e0a31aa814c016
- SHA1
  
  8faec0d274677c9a9fa8610d3603c1423fd4765e
- SHA256
  
  463d6f48295dbf12f97549814b20facef94684247fc250a98f6546c76be7e21c
- SHA512
  
  6ee444f4ed5159f904f2bf99c611a21a258b38de72ebfe42666857def33b5686d78ecf16a80b842347d3d97d54162d8d9e4c40098345c4230d99cc108f8e4b49
- SSDEEP
  
  6144:PZDPnPsHhCC7fSxXBSXkr17rFfv7duydTmU0BXe5aRucLXEWhcX4s0l/:ZPnP0EXcUtTuE8u5/cQWhcX475
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2