3d1679201b08d09b0de3cbb9b691de9cfa30275e5eb6be151304768b68e162de | Triage

Sharing

General

Target

3d1679201b08d09b0de3cbb9b691de9cfa30275e5eb6be151304768b68e162de
Size

1.0MB
Sample

230922-j7ka7agg36
MD5

b1aabf6929659dc9bcecc76553bb6ce7
SHA1

04f1b0a778a190d6533809b5bf93b0723166164b
SHA256

3d1679201b08d09b0de3cbb9b691de9cfa30275e5eb6be151304768b68e162de
SHA512

181a1a5e2c69e98a2256982372ce6e7cd7a702243737b3b413e1c6954cb48b63b981caf400bdf570cff392476aaf9808cef82c22d9739ea823e547ee2d9d6521
SSDEEP

12288:mMrdy90TmnwdTaFkmxR2ysZnMkIbuGuqqTZ0snt6aC8guXiZYcbkTlVBH6fLRoXs:DyEWwxiRvuBnte8zXgYbVBHsWX0T

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3d1679201b08d09b0de3cbb9b691de9cfa30275e5eb6be151304768b68e162de
- Size
  
  1.0MB
- MD5
  
  b1aabf6929659dc9bcecc76553bb6ce7
- SHA1
  
  04f1b0a778a190d6533809b5bf93b0723166164b
- SHA256
  
  3d1679201b08d09b0de3cbb9b691de9cfa30275e5eb6be151304768b68e162de
- SHA512
  
  181a1a5e2c69e98a2256982372ce6e7cd7a702243737b3b413e1c6954cb48b63b981caf400bdf570cff392476aaf9808cef82c22d9739ea823e547ee2d9d6521
- SSDEEP
  
  12288:mMrdy90TmnwdTaFkmxR2ysZnMkIbuGuqqTZ0snt6aC8guXiZYcbkTlVBH6fLRoXs:DyEWwxiRvuBnte8zXgYbVBHsWX0T
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1