de1b85f2ae288560ef0999a925c596c9e3f479254b14fbd5313a9213a859b7b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0aa8c86e2efe030796af6dee9dd10a60
Size

311KB
Sample

231230-b83j6agfh7
MD5

0aa8c86e2efe030796af6dee9dd10a60
SHA1

d4207827d5e541c912a4499f80f40d9299424b2d
SHA256

de1b85f2ae288560ef0999a925c596c9e3f479254b14fbd5313a9213a859b7b9
SHA512

6a13a026a876328a602836b0b35b3e77a4a05050a314c7f33a1f84225aa8f47637f97eb80aa82fa67b743efbd21b1abb65421fdde5aac84128870cd98eb1d6e4
SSDEEP

6144:vsbBGhz9/wAS64AqUuGp2hpEw7I41gY9sp:vsBitVSziuu6LIZ

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0aa8c86e2efe030796af6dee9dd10a60
- Size
  
  311KB
- MD5
  
  0aa8c86e2efe030796af6dee9dd10a60
- SHA1
  
  d4207827d5e541c912a4499f80f40d9299424b2d
- SHA256
  
  de1b85f2ae288560ef0999a925c596c9e3f479254b14fbd5313a9213a859b7b9
- SHA512
  
  6a13a026a876328a602836b0b35b3e77a4a05050a314c7f33a1f84225aa8f47637f97eb80aa82fa67b743efbd21b1abb65421fdde5aac84128870cd98eb1d6e4
- SSDEEP
  
  6144:vsbBGhz9/wAS64AqUuGp2hpEw7I41gY9sp:vsBitVSziuu6LIZ
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2