fe4d37b2cb758773830a785ed89020e7d31a58a03397221cd93ce0cacb87b7d7 | Triage

Sharing

General

Target

fe4d37b2cb758773830a785ed89020e7d31a58a03397221cd93ce0cacb87b7d7
Size

76KB
Sample

221205-k6qx1sec37
MD5

980c2a5956ee18cfd60d17f899ee3115
SHA1

3d146224490bd8473565a994af03559eb3d335c6
SHA256

fe4d37b2cb758773830a785ed89020e7d31a58a03397221cd93ce0cacb87b7d7
SHA512

c0a11a748da1d2692a934a6052b32b23b7a9f47dc56d3ae8fd88779a2089a19caa370042010ed5c313aebe45149a6a8d07b294a4394a71978d2d89ffcaed3712
SSDEEP

1536:xDxbxMhRI3Jihyd3js7A6s74tBTF3s0loJTljub8:xDxbxMhRI3IhKjR7iH3VoTl1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fe4d37b2cb758773830a785ed89020e7d31a58a03397221cd93ce0cacb87b7d7
- Size
  
  76KB
- MD5
  
  980c2a5956ee18cfd60d17f899ee3115
- SHA1
  
  3d146224490bd8473565a994af03559eb3d335c6
- SHA256
  
  fe4d37b2cb758773830a785ed89020e7d31a58a03397221cd93ce0cacb87b7d7
- SHA512
  
  c0a11a748da1d2692a934a6052b32b23b7a9f47dc56d3ae8fd88779a2089a19caa370042010ed5c313aebe45149a6a8d07b294a4394a71978d2d89ffcaed3712
- SSDEEP
  
  1536:xDxbxMhRI3Jihyd3js7A6s74tBTF3s0loJTljub8:xDxbxMhRI3IhKjR7iH3VoTl1
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2