f70ed89f8d216c66ffe76d8002cccd35e42f5261ff397ca002ecf6f099bc08b5 | Triage

Sharing

General

Target

2c4d0a4130571716ea1f2751a120f228
Size

120KB
Sample

231231-hm9vnsacer
MD5

2c4d0a4130571716ea1f2751a120f228
SHA1

5936c00928a1c86e4e49a28172b670befc1234f2
SHA256

f70ed89f8d216c66ffe76d8002cccd35e42f5261ff397ca002ecf6f099bc08b5
SHA512

661c54883bd612b59e4a9f01bb553ce96ec303cb3dbc6e431555bb4eb322ad747ed55ba3348ec1822e43066a06315c1eda9fb0d4b7764bc2a7b7989ae9c90e0e
SSDEEP

1536:396bx0D3E/Q9opylZipii7LkoyXYTBgmqzgmvQxRjXrvXk8VPkvf98wO2z+gRqE5:4OE/copyl0ZspX0AgGQz/v0gir+k8s

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2c4d0a4130571716ea1f2751a120f228
- Size
  
  120KB
- MD5
  
  2c4d0a4130571716ea1f2751a120f228
- SHA1
  
  5936c00928a1c86e4e49a28172b670befc1234f2
- SHA256
  
  f70ed89f8d216c66ffe76d8002cccd35e42f5261ff397ca002ecf6f099bc08b5
- SHA512
  
  661c54883bd612b59e4a9f01bb553ce96ec303cb3dbc6e431555bb4eb322ad747ed55ba3348ec1822e43066a06315c1eda9fb0d4b7764bc2a7b7989ae9c90e0e
- SSDEEP
  
  1536:396bx0D3E/Q9opylZipii7LkoyXYTBgmqzgmvQxRjXrvXk8VPkvf98wO2z+gRqE5:4OE/copyl0ZspX0AgGQz/v0gir+k8s
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2