54d7be814fe6df5d4bf7099722e605e597d002e2504f8a2f0e7b9cc55c62c530 | Triage

Sharing

General

Target

1509e30daa0c6be7d487a8c494c1e3ea
Size

121KB
Sample

231225-lrjqtsbbf2
MD5

1509e30daa0c6be7d487a8c494c1e3ea
SHA1

9f1c19190fc29c3843427eac9757c9b09b58341d
SHA256

54d7be814fe6df5d4bf7099722e605e597d002e2504f8a2f0e7b9cc55c62c530
SHA512

74096b23ea24a242b2c80f1952cddddaeec2cfcde1c7d108b0e2dd8b8d7378b4ad22be41733974e2f625209e87b52c7a0e45d88d910fbc546b567770bc164457
SSDEEP

3072:MOKeIG6ACet7mll9mv3fhuXrZ90SkQzHNc:MOKeIG6ACPcv3JqmIBc

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1509e30daa0c6be7d487a8c494c1e3ea
- Size
  
  121KB
- MD5
  
  1509e30daa0c6be7d487a8c494c1e3ea
- SHA1
  
  9f1c19190fc29c3843427eac9757c9b09b58341d
- SHA256
  
  54d7be814fe6df5d4bf7099722e605e597d002e2504f8a2f0e7b9cc55c62c530
- SHA512
  
  74096b23ea24a242b2c80f1952cddddaeec2cfcde1c7d108b0e2dd8b8d7378b4ad22be41733974e2f625209e87b52c7a0e45d88d910fbc546b567770bc164457
- SSDEEP
  
  3072:MOKeIG6ACet7mll9mv3fhuXrZ90SkQzHNc:MOKeIG6ACPcv3JqmIBc
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2