8ca3b29730686ea1d77500a473bbaaa14e7d8c12bdef10beae7a57de9cd18a54 | Triage

Sharing

General

Target

x9228246.exe
Size

548KB
Sample

231004-hy29zahg9z
MD5

7839fedb6f3f1c825ec1555c77be70e7
SHA1

f0a0be570508ff708b8d7eaec08ae2b9d2926b7d
SHA256

8ca3b29730686ea1d77500a473bbaaa14e7d8c12bdef10beae7a57de9cd18a54
SHA512

a7e44339079576ad803a950ee5b0c9f18ab517284a8c3cd5985b32cc254c2cb7a5393cd3597362ff78396876c59a9f4cbb067358bbf17d319cde3a7076e2cee4
SSDEEP

12288:DMrXy90D7O0pmLwPPFDU2V4Y04yttO7NKsa:UyUjpmEFDUhY04yqNKsa

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  x9228246.exe
- Size
  
  548KB
- MD5
  
  7839fedb6f3f1c825ec1555c77be70e7
- SHA1
  
  f0a0be570508ff708b8d7eaec08ae2b9d2926b7d
- SHA256
  
  8ca3b29730686ea1d77500a473bbaaa14e7d8c12bdef10beae7a57de9cd18a54
- SHA512
  
  a7e44339079576ad803a950ee5b0c9f18ab517284a8c3cd5985b32cc254c2cb7a5393cd3597362ff78396876c59a9f4cbb067358bbf17d319cde3a7076e2cee4
- SSDEEP
  
  12288:DMrXy90D7O0pmLwPPFDU2V4Y04yttO7NKsa:UyUjpmEFDUhY04yqNKsa
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2