67752e2f50674670fb58bfb89ccfb4c7f41abdf34944a04fea79c05d1edd1c0f | Triage

Sharing

General

Target

4023c1e2bd1e70aed129fcd6a58df22f
Size

57KB
Sample

231225-2dwfgaaebp
MD5

4023c1e2bd1e70aed129fcd6a58df22f
SHA1

dcd1361ab29ce1c2d3a9c786b4fd58b04222cb19
SHA256

67752e2f50674670fb58bfb89ccfb4c7f41abdf34944a04fea79c05d1edd1c0f
SHA512

7e8d92252b04021c88dfb08fdbd076111341dc1d5040f434e5148c6eba2ab51b8946ed5a9bf7e8b94a42611008abf24236314155282d98d41ff6a02871d5fbab
SSDEEP

768:3Ddjl9yHkrAoV+KOwOBIJCTj59WY8QiMso5fl9e1Xl1tqylIwW/+wpzre7+h3:3JjlcPoZQBIkTjXsW5flAhq/wgZ3

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4023c1e2bd1e70aed129fcd6a58df22f
- Size
  
  57KB
- MD5
  
  4023c1e2bd1e70aed129fcd6a58df22f
- SHA1
  
  dcd1361ab29ce1c2d3a9c786b4fd58b04222cb19
- SHA256
  
  67752e2f50674670fb58bfb89ccfb4c7f41abdf34944a04fea79c05d1edd1c0f
- SHA512
  
  7e8d92252b04021c88dfb08fdbd076111341dc1d5040f434e5148c6eba2ab51b8946ed5a9bf7e8b94a42611008abf24236314155282d98d41ff6a02871d5fbab
- SSDEEP
  
  768:3Ddjl9yHkrAoV+KOwOBIJCTj59WY8QiMso5fl9e1Xl1tqylIwW/+wpzre7+h3:3JjlcPoZQBIkTjXsW5flAhq/wgZ3
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2