2b93f9095e8695ccecddb46f5c79252d226f665d29e781cb53b0b8d237414a29 | Triage

Sharing

General

Target

7fb15605dccd06a70ae7644062a69114
Size

262KB
Sample

240129-nafnysgdg6
MD5

7fb15605dccd06a70ae7644062a69114
SHA1

3fa5587c045a0e99f2304828e275776154a30ed1
SHA256

2b93f9095e8695ccecddb46f5c79252d226f665d29e781cb53b0b8d237414a29
SHA512

83dda785e21f940a92ab863839130767e15184c83cd828d1778986092c06934a65ae8f81ea32de8b55c129575b3e4f9a8cbe989462fb69664349ee7c8b4c5654
SSDEEP

6144:wZ8Gp+df0afmVTRMdVdpn94sLrNXel9Qb98+MARI:w8YkfXf4TRMn94svNuzQb9Zw

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  7fb15605dccd06a70ae7644062a69114
- Size
  
  262KB
- MD5
  
  7fb15605dccd06a70ae7644062a69114
- SHA1
  
  3fa5587c045a0e99f2304828e275776154a30ed1
- SHA256
  
  2b93f9095e8695ccecddb46f5c79252d226f665d29e781cb53b0b8d237414a29
- SHA512
  
  83dda785e21f940a92ab863839130767e15184c83cd828d1778986092c06934a65ae8f81ea32de8b55c129575b3e4f9a8cbe989462fb69664349ee7c8b4c5654
- SSDEEP
  
  6144:wZ8Gp+df0afmVTRMdVdpn94sLrNXel9Qb98+MARI:w8YkfXf4TRMn94svNuzQb9Zw
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2