d2f3272108d1e3abd82520d2af25e446625078f5faf104304eef8753dcf361b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2f3272108d1e3abd82520d2af25e446625078f5faf104304eef8753dcf361b9
Size

1.1MB
Sample

231014-tgbapshh66
MD5

f78b520c495fc204569b9de55614db15
SHA1

cf3ed2b5787c269118f5e349881dbddf0cc3167c
SHA256

d2f3272108d1e3abd82520d2af25e446625078f5faf104304eef8753dcf361b9
SHA512

030b9e189369db12c1dbe8f08e498b30df7d3fc32a9bac100a59dfb6e687a04236261a85611b049e9d31a9a034b426ab92c9e3a0c96115230afb88c108962549
SSDEEP

24576:RygCyVZzWzab7qgV+JCq+lvC5a7oeFkVCeIPyb8iWEZ0EGWkeCI3p/C+B:E678g4Cq+lv/Le+yb8WGWkeCF+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d2f3272108d1e3abd82520d2af25e446625078f5faf104304eef8753dcf361b9
- Size
  
  1.1MB
- MD5
  
  f78b520c495fc204569b9de55614db15
- SHA1
  
  cf3ed2b5787c269118f5e349881dbddf0cc3167c
- SHA256
  
  d2f3272108d1e3abd82520d2af25e446625078f5faf104304eef8753dcf361b9
- SHA512
  
  030b9e189369db12c1dbe8f08e498b30df7d3fc32a9bac100a59dfb6e687a04236261a85611b049e9d31a9a034b426ab92c9e3a0c96115230afb88c108962549
- SSDEEP
  
  24576:RygCyVZzWzab7qgV+JCq+lvC5a7oeFkVCeIPyb8iWEZ0EGWkeCI3p/C+B:E678g4Cq+lv/Le+yb8WGWkeCF+
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1