e334139d9637f663e9343eda8826876835da4eb65406564bad3a409f4be935af | Triage

Sharing

General

Target

e334139d9637f663e9343eda8826876835da4eb65406564bad3a409f4be935af
Size

156KB
Sample

221206-q4kwwaga4z
MD5

1ad484c4aa3f891b622b451943badd53
SHA1

c8fefcf2edd27ff5c9bdcc2daef4e663d0a61e6f
SHA256

e334139d9637f663e9343eda8826876835da4eb65406564bad3a409f4be935af
SHA512

f7243c48367367d15f133f14b2335e7bd2955eed9de973bc7e6f2de25afb3aa61fffbca24d1086af950cf82c394a9f6d9a999180eb106d1b00e948fcecd03f55
SSDEEP

1536:zk18DMBo98dxAmL56yC6gm/lyP6p6O98eRRFgbl6Hj1zExnbmbrNYqyUipqJTnor:4WDwo94xActp59vDg5RnO6qKoJTnEjF

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e334139d9637f663e9343eda8826876835da4eb65406564bad3a409f4be935af
- Size
  
  156KB
- MD5
  
  1ad484c4aa3f891b622b451943badd53
- SHA1
  
  c8fefcf2edd27ff5c9bdcc2daef4e663d0a61e6f
- SHA256
  
  e334139d9637f663e9343eda8826876835da4eb65406564bad3a409f4be935af
- SHA512
  
  f7243c48367367d15f133f14b2335e7bd2955eed9de973bc7e6f2de25afb3aa61fffbca24d1086af950cf82c394a9f6d9a999180eb106d1b00e948fcecd03f55
- SSDEEP
  
  1536:zk18DMBo98dxAmL56yC6gm/lyP6p6O98eRRFgbl6Hj1zExnbmbrNYqyUipqJTnor:4WDwo94xActp59vDg5RnO6qKoJTnEjF
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2