9a7d9fd6550e6ce56b7845447bb426a20b8b9f7781c5611681d87b2a62bde3bc | Triage

Sharing

General

Target

75820747af375bc424a6af2155ad1d4e
Size

324KB
Sample

240125-zte3bagbgk
MD5

75820747af375bc424a6af2155ad1d4e
SHA1

56ee47871d474f877d403a52e5afc872c6b36d1e
SHA256

9a7d9fd6550e6ce56b7845447bb426a20b8b9f7781c5611681d87b2a62bde3bc
SHA512

af482792a3a0400e419cdf0addb85f2989d66e237e9db5c7774e811a00996b9a5b1a72a1a2308bb681830bee341ab4935a4898fa1eae09a633acad0ccd48acc6
SSDEEP

6144:81CSGw5G5Y1dFwJGzOmcEnmv87x9XwONdrvXTkghKbydraHY:ICSQ5Mhik4819Xd1vXTkg42gHY

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  75820747af375bc424a6af2155ad1d4e
- Size
  
  324KB
- MD5
  
  75820747af375bc424a6af2155ad1d4e
- SHA1
  
  56ee47871d474f877d403a52e5afc872c6b36d1e
- SHA256
  
  9a7d9fd6550e6ce56b7845447bb426a20b8b9f7781c5611681d87b2a62bde3bc
- SHA512
  
  af482792a3a0400e419cdf0addb85f2989d66e237e9db5c7774e811a00996b9a5b1a72a1a2308bb681830bee341ab4935a4898fa1eae09a633acad0ccd48acc6
- SSDEEP
  
  6144:81CSGw5G5Y1dFwJGzOmcEnmv87x9XwONdrvXTkghKbydraHY:ICSQ5Mhik4819Xd1vXTkg42gHY
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2