16fd7ea5ee90a394256f98bff9c685e03e94f0c6b1b5c81f650e95654cf8a6fd | Triage

Sharing

General

Target

19831de613a0ed24b298c008b3ac00cd
Size

96KB
Sample

231230-qd545aeden
MD5

19831de613a0ed24b298c008b3ac00cd
SHA1

38e997c52ba58ce6ff1436d5e34f007bff494341
SHA256

16fd7ea5ee90a394256f98bff9c685e03e94f0c6b1b5c81f650e95654cf8a6fd
SHA512

ce1b82b5ceb3f65e3279bea78231cf8bdcf51ad99298c51b3e49407c71c6abd0063e0b16b30bd6c4a91f696c82eac4a69e646a862503d51f8212713fcb3d636a
SSDEEP

1536:g8kcu4l7dSZ9T+2mxPAsL/JbuOLZ64ZCPBKbnziw1dVOcwCCQc+VDM+QJtOw/:2cj7k/y2mxB9uMzZCPBK1Dw9Raw/

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  19831de613a0ed24b298c008b3ac00cd
- Size
  
  96KB
- MD5
  
  19831de613a0ed24b298c008b3ac00cd
- SHA1
  
  38e997c52ba58ce6ff1436d5e34f007bff494341
- SHA256
  
  16fd7ea5ee90a394256f98bff9c685e03e94f0c6b1b5c81f650e95654cf8a6fd
- SHA512
  
  ce1b82b5ceb3f65e3279bea78231cf8bdcf51ad99298c51b3e49407c71c6abd0063e0b16b30bd6c4a91f696c82eac4a69e646a862503d51f8212713fcb3d636a
- SSDEEP
  
  1536:g8kcu4l7dSZ9T+2mxPAsL/JbuOLZ64ZCPBKbnziw1dVOcwCCQc+VDM+QJtOw/:2cj7k/y2mxB9uMzZCPBK1Dw9Raw/
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2