abc45a32826a88399d284f4ad3a1e1cb163b4cd1117997cea2a8e817a5dfe5cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abc45a32826a88399d284f4ad3a1e1cb163b4cd1117997cea2a8e817a5dfe5cc
Size

1.1MB
Sample

231015-2bg53acf78
MD5

1f30c9507319aa01de7ee0d69bde93b7
SHA1

724037fd1c126da939d18b520253478fe0ba9c50
SHA256

abc45a32826a88399d284f4ad3a1e1cb163b4cd1117997cea2a8e817a5dfe5cc
SHA512

a1de2e99c5764ee83cfc315ad21a6ada5790cb73f6a1168b7ac270e16efc81974dedca992d78a1f2b4f70afc816893e6ea6213e661735167471959559310dfab
SSDEEP

24576:kyBLAJ8kI92yt22KaIKNy1SHBfHIEiYCKB6jjjtV4+14fH:zBLAJKT3Ny1mfoK+Ht+g+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  abc45a32826a88399d284f4ad3a1e1cb163b4cd1117997cea2a8e817a5dfe5cc
- Size
  
  1.1MB
- MD5
  
  1f30c9507319aa01de7ee0d69bde93b7
- SHA1
  
  724037fd1c126da939d18b520253478fe0ba9c50
- SHA256
  
  abc45a32826a88399d284f4ad3a1e1cb163b4cd1117997cea2a8e817a5dfe5cc
- SHA512
  
  a1de2e99c5764ee83cfc315ad21a6ada5790cb73f6a1168b7ac270e16efc81974dedca992d78a1f2b4f70afc816893e6ea6213e661735167471959559310dfab
- SSDEEP
  
  24576:kyBLAJ8kI92yt22KaIKNy1SHBfHIEiYCKB6jjjtV4+14fH:zBLAJKT3Ny1mfoK+Ht+g+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2