26ff647daa2ac2de34e37d96703f0c70ec9817e0f05f79f13b436ac3ccacfc42 | Triage

Sharing

General

Target

7b38da50971daf482dae23670de639d8
Size

323KB
Sample

240127-zefejabfe5
MD5

7b38da50971daf482dae23670de639d8
SHA1

b67c79523400fb61aa8b65b10e2b5f898fd7a721
SHA256

26ff647daa2ac2de34e37d96703f0c70ec9817e0f05f79f13b436ac3ccacfc42
SHA512

8427371d0faac1f0742823d5365db93407965847aba9892f575192cc08acc0db3f514a31047180fb04372fa5454d81a7192411cccf79f9287d099ffe846455a0
SSDEEP

6144:/qfAwfwd99vxoYC9+Li9IBCiiortLeT9ZvLmE7JWAtP:SfAos9DoHvorsTzCQJBtP

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  7b38da50971daf482dae23670de639d8
- Size
  
  323KB
- MD5
  
  7b38da50971daf482dae23670de639d8
- SHA1
  
  b67c79523400fb61aa8b65b10e2b5f898fd7a721
- SHA256
  
  26ff647daa2ac2de34e37d96703f0c70ec9817e0f05f79f13b436ac3ccacfc42
- SHA512
  
  8427371d0faac1f0742823d5365db93407965847aba9892f575192cc08acc0db3f514a31047180fb04372fa5454d81a7192411cccf79f9287d099ffe846455a0
- SSDEEP
  
  6144:/qfAwfwd99vxoYC9+Li9IBCiiortLeT9ZvLmE7JWAtP:SfAos9DoHvorsTzCQJBtP
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2