46c41097a12828dfaf4b0f55e61417f76ab8824cfe9502fcfdba7265aa83e04a | Triage

Sharing

General

Target

4f2e6714b75856c79cd760cce8b0e172
Size

993KB
Sample

231226-dpl46seef9
MD5

4f2e6714b75856c79cd760cce8b0e172
SHA1

8032929bd9a6cc47d37db6165a2e6874bcaa7ed6
SHA256

46c41097a12828dfaf4b0f55e61417f76ab8824cfe9502fcfdba7265aa83e04a
SHA512

7a583ee2ac3ae2437462bece93367a6c40cacd2072d5945735e720dd9f1b4c12dd84859485d699bc0a97e1a7a99120da807f1e4612de82b99527787d1b7ae906
SSDEEP

6144:ce5/c2FEDPWGc6/tSVsdwknSai1nF6L9rtSzJeL/Mo7IFD9CDgQdHhQQA1lIrv+G:SUTct

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4f2e6714b75856c79cd760cce8b0e172
- Size
  
  993KB
- MD5
  
  4f2e6714b75856c79cd760cce8b0e172
- SHA1
  
  8032929bd9a6cc47d37db6165a2e6874bcaa7ed6
- SHA256
  
  46c41097a12828dfaf4b0f55e61417f76ab8824cfe9502fcfdba7265aa83e04a
- SHA512
  
  7a583ee2ac3ae2437462bece93367a6c40cacd2072d5945735e720dd9f1b4c12dd84859485d699bc0a97e1a7a99120da807f1e4612de82b99527787d1b7ae906
- SSDEEP
  
  6144:ce5/c2FEDPWGc6/tSVsdwknSai1nF6L9rtSzJeL/Mo7IFD9CDgQdHhQQA1lIrv+G:SUTct
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2