2e244bc261ad6660e8a29deba2b0fd10f8fbbb3216ec998f5b1393a951d4b348 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e244bc261ad6660e8a29deba2b0fd10f8fbbb3216ec998f5b1393a951d4b348
Size

1.1MB
Sample

231002-yjd7laga84
MD5

291d88e0e0119cfc541acbe76ea5472a
SHA1

7afa7f305d695475ed582cc34eb0f05052f1e785
SHA256

2e244bc261ad6660e8a29deba2b0fd10f8fbbb3216ec998f5b1393a951d4b348
SHA512

c58de961ba22c9b29b82e80b72ee42bd2bf5dbe00927b0ffb1a6c4928d827069b6b50e009a1fa97ae30bad4553ed4d475507f73f99b00c26fb660a7031260180
SSDEEP

24576:GyCGYUJAIpE5ENm6A0GW/gDpyGNsU2Nq2JK2WGZ2:VsUjeymPTW/gDp7NUZ0dG

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2e244bc261ad6660e8a29deba2b0fd10f8fbbb3216ec998f5b1393a951d4b348
- Size
  
  1.1MB
- MD5
  
  291d88e0e0119cfc541acbe76ea5472a
- SHA1
  
  7afa7f305d695475ed582cc34eb0f05052f1e785
- SHA256
  
  2e244bc261ad6660e8a29deba2b0fd10f8fbbb3216ec998f5b1393a951d4b348
- SHA512
  
  c58de961ba22c9b29b82e80b72ee42bd2bf5dbe00927b0ffb1a6c4928d827069b6b50e009a1fa97ae30bad4553ed4d475507f73f99b00c26fb660a7031260180
- SSDEEP
  
  24576:GyCGYUJAIpE5ENm6A0GW/gDpyGNsU2Nq2JK2WGZ2:VsUjeymPTW/gDp7NUZ0dG
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1