e07379b697c509743a93526d33e7db480b4e76fa5ef7c6e5a6c93b35ffe49522 | Triage

Sharing

General

Target

e07379b697c509743a93526d33e7db480b4e76fa5ef7c6e5a6c93b35ffe49522
Size

1.0MB
Sample

230921-stfkhsah88
MD5

8ce4876761c6644ab84d9e915c5caaf2
SHA1

ca3ffe364b6908dfd37dbb1ae79c565e1a4845ae
SHA256

e07379b697c509743a93526d33e7db480b4e76fa5ef7c6e5a6c93b35ffe49522
SHA512

76363e206f5734af7bd8ab673cea0e8ddecca3c13b9b13c2d5c1f9f59a62153bbf2121eeb3595a273ad91b4fbebcb4ed45010e83fe5946c9b4aa580040a88e9e
SSDEEP

24576:DyetMp/G/ckfiKkaDya0gHjAVdm1NbnQB:WeGp/G/cpXgHcV01h

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e07379b697c509743a93526d33e7db480b4e76fa5ef7c6e5a6c93b35ffe49522
- Size
  
  1.0MB
- MD5
  
  8ce4876761c6644ab84d9e915c5caaf2
- SHA1
  
  ca3ffe364b6908dfd37dbb1ae79c565e1a4845ae
- SHA256
  
  e07379b697c509743a93526d33e7db480b4e76fa5ef7c6e5a6c93b35ffe49522
- SHA512
  
  76363e206f5734af7bd8ab673cea0e8ddecca3c13b9b13c2d5c1f9f59a62153bbf2121eeb3595a273ad91b4fbebcb4ed45010e83fe5946c9b4aa580040a88e9e
- SSDEEP
  
  24576:DyetMp/G/ckfiKkaDya0gHjAVdm1NbnQB:WeGp/G/cpXgHcV01h
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1