4a0a3e22f43c7579d9108f93de2d5e755fb23ae67c910278af76cf77afff3654 | Triage

Sharing

General

Target

7e2a06ab8b923fc928f0cd9a6ed745c2
Size

136KB
Sample

240128-2b72gsbed2
MD5

7e2a06ab8b923fc928f0cd9a6ed745c2
SHA1

01c08af6213c86e0b75e93cd497fa51e4cacb34c
SHA256

4a0a3e22f43c7579d9108f93de2d5e755fb23ae67c910278af76cf77afff3654
SHA512

dcb6d2c460e48580efb6b17fb0f1e9027a14d2f273e756e2f5cc11478a901273109853bde3ab55de9ddec7dabc0952e74c9962ea1f72dab2e99417374c217214
SSDEEP

3072:AOqbgt6rdx5chjgMVYvEJnateb8SVPIR+x/Kr:cbd+3CvUatjS0+tKr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  7e2a06ab8b923fc928f0cd9a6ed745c2
- Size
  
  136KB
- MD5
  
  7e2a06ab8b923fc928f0cd9a6ed745c2
- SHA1
  
  01c08af6213c86e0b75e93cd497fa51e4cacb34c
- SHA256
  
  4a0a3e22f43c7579d9108f93de2d5e755fb23ae67c910278af76cf77afff3654
- SHA512
  
  dcb6d2c460e48580efb6b17fb0f1e9027a14d2f273e756e2f5cc11478a901273109853bde3ab55de9ddec7dabc0952e74c9962ea1f72dab2e99417374c217214
- SSDEEP
  
  3072:AOqbgt6rdx5chjgMVYvEJnateb8SVPIR+x/Kr:cbd+3CvUatjS0+tKr
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2