2b0e9e0bb11799fc29f783af7f233b7a59c602b6d4d60a78f60bff87cff3e175 | Triage

Sharing

General

Target

2b0e9e0bb11799fc29f783af7f233b7a59c602b6d4d60a78f60bff87cff3e175
Size

1.0MB
Sample

230922-lcvjsafb9x
MD5

03c76cb00828ee495157dbcd95bab12f
SHA1

5f62bf5b238647197614fa5678ebe2a40129da07
SHA256

2b0e9e0bb11799fc29f783af7f233b7a59c602b6d4d60a78f60bff87cff3e175
SHA512

127dec62fd1ab555739406e8c131fdbbd57a820fb341b24c8101ab816ada48c1c37360a1b7d6314c8d9fdd017cdce9105f5a9c21a07545bd4085e5bba60e5d95
SSDEEP

24576:syRN2kOcY45WP1N31Q1FizLm5RGAszt43Hb:bRN2kLuDGFZ5QAsh

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2b0e9e0bb11799fc29f783af7f233b7a59c602b6d4d60a78f60bff87cff3e175
- Size
  
  1.0MB
- MD5
  
  03c76cb00828ee495157dbcd95bab12f
- SHA1
  
  5f62bf5b238647197614fa5678ebe2a40129da07
- SHA256
  
  2b0e9e0bb11799fc29f783af7f233b7a59c602b6d4d60a78f60bff87cff3e175
- SHA512
  
  127dec62fd1ab555739406e8c131fdbbd57a820fb341b24c8101ab816ada48c1c37360a1b7d6314c8d9fdd017cdce9105f5a9c21a07545bd4085e5bba60e5d95
- SSDEEP
  
  24576:syRN2kOcY45WP1N31Q1FizLm5RGAszt43Hb:bRN2kLuDGFZ5QAsh
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1