8067560779b0028cfc3c9a8234fbfbd570f7393430fb38dc497872f9321cac6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8067560779b0028cfc3c9a8234fbfbd570f7393430fb38dc497872f9321cac6c
Size

1.5MB
Sample

231012-ezv1hagf28
MD5

cbe89c69ee00dc12f76a04b36b6aba7b
SHA1

492754afb227ad056c3074c5cef4fac0732e96de
SHA256

8067560779b0028cfc3c9a8234fbfbd570f7393430fb38dc497872f9321cac6c
SHA512

5375a2eb9aaf1b2ee61c3bb8bfab29bb1965e25c8b0ec5d35c9d1c78d5f9794e322e391c71f6640bc84b4fbd195546cea059b1419afe1a39df3e2375a0708aaa
SSDEEP

49152:dbqpYDKQjP8gcKtCfZMrMK0K7BK9F8GQ:RqG+q8D/bKl1K9uP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8067560779b0028cfc3c9a8234fbfbd570f7393430fb38dc497872f9321cac6c
- Size
  
  1.5MB
- MD5
  
  cbe89c69ee00dc12f76a04b36b6aba7b
- SHA1
  
  492754afb227ad056c3074c5cef4fac0732e96de
- SHA256
  
  8067560779b0028cfc3c9a8234fbfbd570f7393430fb38dc497872f9321cac6c
- SHA512
  
  5375a2eb9aaf1b2ee61c3bb8bfab29bb1965e25c8b0ec5d35c9d1c78d5f9794e322e391c71f6640bc84b4fbd195546cea059b1419afe1a39df3e2375a0708aaa
- SSDEEP
  
  49152:dbqpYDKQjP8gcKtCfZMrMK0K7BK9F8GQ:RqG+q8D/bKl1K9uP
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1