48cddb21b7a7f41fd140033005b2c61b1097977533bd760fc65ac7de42d9178e | Triage

Sharing

General

Target

44e7c71de6742f9df3231343b84e59cd
Size

377KB
Sample

231226-aaz6pscfa5
MD5

44e7c71de6742f9df3231343b84e59cd
SHA1

914d72f126e4a4278c6f6ff8785915d62b575598
SHA256

48cddb21b7a7f41fd140033005b2c61b1097977533bd760fc65ac7de42d9178e
SHA512

143384af88b5cd61e0a67f6ac934fbd4aeaca467ac75f82e2261748dfff7eae531ae68c298b790986fb2bb8a798938e5c1de0de9706dbd7acf942813a10de1da
SSDEEP

6144:H6OwqYp193oxB0clrIrwcZDT+d84MLRpx8nNcJa2db/Slsm1VciGOfzE/8H1G:aOoJ4/LobDsU9/8GPdLSl91VcrUc

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  44e7c71de6742f9df3231343b84e59cd
- Size
  
  377KB
- MD5
  
  44e7c71de6742f9df3231343b84e59cd
- SHA1
  
  914d72f126e4a4278c6f6ff8785915d62b575598
- SHA256
  
  48cddb21b7a7f41fd140033005b2c61b1097977533bd760fc65ac7de42d9178e
- SHA512
  
  143384af88b5cd61e0a67f6ac934fbd4aeaca467ac75f82e2261748dfff7eae531ae68c298b790986fb2bb8a798938e5c1de0de9706dbd7acf942813a10de1da
- SSDEEP
  
  6144:H6OwqYp193oxB0clrIrwcZDT+d84MLRpx8nNcJa2db/Slsm1VciGOfzE/8H1G:aOoJ4/LobDsU9/8GPdLSl91VcrUc
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2