7a71b51d58bfba8d1142e74d62c5b665611f4bbab49f5e3e3ccd2dec020f3e29 | Triage

Sharing

General

Target

061bc8bed65e683ba7df2c7472bcac71
Size

1.1MB
Sample

231229-2rz1tahcgr
MD5

061bc8bed65e683ba7df2c7472bcac71
SHA1

02a6563ad694198912d686b8db87c8efca862df9
SHA256

7a71b51d58bfba8d1142e74d62c5b665611f4bbab49f5e3e3ccd2dec020f3e29
SHA512

dd6991666ff0ccaf37093aecc119c3eb0ec311f410ca285808919509302b2a47d06bbae79e1ea0ac0dafa6ecef18b5e46b6021f419a19413c82cc31f83576095
SSDEEP

24576:xCtI1E+e3PNdCxwa0uHmtSh5ErSS4raFdPbla0naZE:xaK28r9aXr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  061bc8bed65e683ba7df2c7472bcac71
- Size
  
  1.1MB
- MD5
  
  061bc8bed65e683ba7df2c7472bcac71
- SHA1
  
  02a6563ad694198912d686b8db87c8efca862df9
- SHA256
  
  7a71b51d58bfba8d1142e74d62c5b665611f4bbab49f5e3e3ccd2dec020f3e29
- SHA512
  
  dd6991666ff0ccaf37093aecc119c3eb0ec311f410ca285808919509302b2a47d06bbae79e1ea0ac0dafa6ecef18b5e46b6021f419a19413c82cc31f83576095
- SSDEEP
  
  24576:xCtI1E+e3PNdCxwa0uHmtSh5ErSS4raFdPbla0naZE:xaK28r9aXr
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2