78282415f8674fadd97290ee833d500a8cd5cecaab9855c9c6dcc4b169459faa | Triage

Sharing

General

Target

bc9430ddbf4b86ee152a6776c38fb1ad
Size

311KB
Sample

240309-xvaswafh25
MD5

bc9430ddbf4b86ee152a6776c38fb1ad
SHA1

cac02947fa5cdfcd09453114604ac31d3b8ef1b2
SHA256

78282415f8674fadd97290ee833d500a8cd5cecaab9855c9c6dcc4b169459faa
SHA512

f36aa22d434c95a5dfe44414bac0ae6ee2083c0ed09f42308c0c81c4e52b5ee0115b31d6a4510b7867f0857a761c3de2a33b279e14abfb5df8a46927ac4e6189
SSDEEP

6144:ksbBiWhz9/wAS64Aq4uGp2hpEwdI41gY9sF:ksBrtVSz+uu6NI1

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  bc9430ddbf4b86ee152a6776c38fb1ad
- Size
  
  311KB
- MD5
  
  bc9430ddbf4b86ee152a6776c38fb1ad
- SHA1
  
  cac02947fa5cdfcd09453114604ac31d3b8ef1b2
- SHA256
  
  78282415f8674fadd97290ee833d500a8cd5cecaab9855c9c6dcc4b169459faa
- SHA512
  
  f36aa22d434c95a5dfe44414bac0ae6ee2083c0ed09f42308c0c81c4e52b5ee0115b31d6a4510b7867f0857a761c3de2a33b279e14abfb5df8a46927ac4e6189
- SSDEEP
  
  6144:ksbBiWhz9/wAS64Aq4uGp2hpEwdI41gY9sF:ksBrtVSz+uu6NI1
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2