150fb07d25c5963ed127b5565365c7b3c4fd94383794d11af5058f47932b53bb | Triage

Sharing

General

Target

4c44c56b871c9fba88d77acab86ce647
Size

294KB
Sample

231226-crz85sgcar
MD5

4c44c56b871c9fba88d77acab86ce647
SHA1

f3d166cd1d3230cd67b306a97f7d4dafe300c771
SHA256

150fb07d25c5963ed127b5565365c7b3c4fd94383794d11af5058f47932b53bb
SHA512

c9749626fb74797b2532d044c6078e6797874d47d2e19c1140499b4580489c3552bc5c7688c050694b8a229afa69ff361eb95e0724816f772493bf24fabdd3bb
SSDEEP

6144:7iGtsLLAlqNC+C+1PTG/qm/PgCnmUSFMhl4ii+M/oI29XqKs:WGtsLUt+L1PTEn/iUSFM8P+rI2ds

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4c44c56b871c9fba88d77acab86ce647
- Size
  
  294KB
- MD5
  
  4c44c56b871c9fba88d77acab86ce647
- SHA1
  
  f3d166cd1d3230cd67b306a97f7d4dafe300c771
- SHA256
  
  150fb07d25c5963ed127b5565365c7b3c4fd94383794d11af5058f47932b53bb
- SHA512
  
  c9749626fb74797b2532d044c6078e6797874d47d2e19c1140499b4580489c3552bc5c7688c050694b8a229afa69ff361eb95e0724816f772493bf24fabdd3bb
- SSDEEP
  
  6144:7iGtsLLAlqNC+C+1PTG/qm/PgCnmUSFMhl4ii+M/oI29XqKs:WGtsLUt+L1PTEn/iUSFM8P+rI2ds
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2