54bbc87baf4088253fdb55decdf6049032cd91ae6688ed8b25cde8d8a26ad659 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41bc9e8f0f8ce2d7061708233c9975d8
Size

52KB
Sample

240104-ychlfahfeq
MD5

41bc9e8f0f8ce2d7061708233c9975d8
SHA1

1e11c0f3735a4f4e736c141a009f78cee3e502c5
SHA256

54bbc87baf4088253fdb55decdf6049032cd91ae6688ed8b25cde8d8a26ad659
SHA512

625196a3e7cb858f083b8fb8fa7a16bfa8e462ff266ac828385ec734d4b0b4e6d8c31bab79ad2d2410fc9169cef04723b942b3889d53688319a86ff8238ff10b
SSDEEP

768:RR4pNmwbQRQELYduAGUCFD/7CL+0nofCBvQG9LikySNAhjG59Z/wIILruN:RRult9uhUCV/7moKBvQGoBPh2NIn+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  41bc9e8f0f8ce2d7061708233c9975d8
- Size
  
  52KB
- MD5
  
  41bc9e8f0f8ce2d7061708233c9975d8
- SHA1
  
  1e11c0f3735a4f4e736c141a009f78cee3e502c5
- SHA256
  
  54bbc87baf4088253fdb55decdf6049032cd91ae6688ed8b25cde8d8a26ad659
- SHA512
  
  625196a3e7cb858f083b8fb8fa7a16bfa8e462ff266ac828385ec734d4b0b4e6d8c31bab79ad2d2410fc9169cef04723b942b3889d53688319a86ff8238ff10b
- SSDEEP
  
  768:RR4pNmwbQRQELYduAGUCFD/7CL+0nofCBvQG9LikySNAhjG59Z/wIILruN:RRult9uhUCV/7moKBvQGoBPh2NIn+
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2