f7381a60a57cb85f279371f702ef61ff431dfbf0ae26c756395714ff6d792e66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40ca4c8ddf11ea5525394a216f9a45aa
Size

311KB
Sample

240104-n2fg9sehbj
MD5

40ca4c8ddf11ea5525394a216f9a45aa
SHA1

8225b6a4e3de78c2c1598f79f70abc2b89e797c5
SHA256

f7381a60a57cb85f279371f702ef61ff431dfbf0ae26c756395714ff6d792e66
SHA512

706970cebf4c59e0d41175ae9afcd1003810edd582eaa284065500ec457ca67b7079b8c1da809dfa01b44514646a589f5cb6f2e6d8518961d86c82f3a7f15576
SSDEEP

6144:CsbB3hz9/wAS64AqhuGp2hpEwjI41gY9sf:CsBxtVSz/uu6zIv

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  40ca4c8ddf11ea5525394a216f9a45aa
- Size
  
  311KB
- MD5
  
  40ca4c8ddf11ea5525394a216f9a45aa
- SHA1
  
  8225b6a4e3de78c2c1598f79f70abc2b89e797c5
- SHA256
  
  f7381a60a57cb85f279371f702ef61ff431dfbf0ae26c756395714ff6d792e66
- SHA512
  
  706970cebf4c59e0d41175ae9afcd1003810edd582eaa284065500ec457ca67b7079b8c1da809dfa01b44514646a589f5cb6f2e6d8518961d86c82f3a7f15576
- SSDEEP
  
  6144:CsbB3hz9/wAS64AqhuGp2hpEwjI41gY9sf:CsBxtVSz/uu6zIv
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2