016424eed02f66ebda644bed14f02781d51398cd883f6a7ae63e8fea76b08e0f | Triage

Sharing

General

Target

1568044c54c2b1e025bde945685ca407
Size

290KB
Sample

231224-2ahefadhh9
MD5

1568044c54c2b1e025bde945685ca407
SHA1

aa3a140086f8e9b52e7c17e000f90421f2698970
SHA256

016424eed02f66ebda644bed14f02781d51398cd883f6a7ae63e8fea76b08e0f
SHA512

5a9de32ed0fccb06bab46dce762b60fc1a639b9fca1ce1475c678f685f5d6535127e888ebc905f650627e669503f8e4bba19485a8b0a2166cc47397ae24cec64
SSDEEP

6144:BfsUV09Du+Rc9DMQtc9LMojzmx1i68Nbt67pkkDvarldYLx3IhpDV:Bp2C9DGh1wi6AtephDveY13QpD

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1568044c54c2b1e025bde945685ca407
- Size
  
  290KB
- MD5
  
  1568044c54c2b1e025bde945685ca407
- SHA1
  
  aa3a140086f8e9b52e7c17e000f90421f2698970
- SHA256
  
  016424eed02f66ebda644bed14f02781d51398cd883f6a7ae63e8fea76b08e0f
- SHA512
  
  5a9de32ed0fccb06bab46dce762b60fc1a639b9fca1ce1475c678f685f5d6535127e888ebc905f650627e669503f8e4bba19485a8b0a2166cc47397ae24cec64
- SSDEEP
  
  6144:BfsUV09Du+Rc9DMQtc9LMojzmx1i68Nbt67pkkDvarldYLx3IhpDV:Bp2C9DGh1wi6AtephDveY13QpD
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2