36b9bfc07a5dbe39399a9a7dd7218d2be5b0542057e6e63e3425c9df58c5e86e | Triage

Sharing

General

Target

ca56f886230d54aa1dc5f9025e30d837
Size

68KB
Sample

240315-drqv5shb64
MD5

ca56f886230d54aa1dc5f9025e30d837
SHA1

c64e66985f82d650682db95818229bd790fbaaf1
SHA256

36b9bfc07a5dbe39399a9a7dd7218d2be5b0542057e6e63e3425c9df58c5e86e
SHA512

72619cedd4a089276412b3c515eba349095057b3503a0299e99b3084fd458adfb1959473205538438021e2052cb1a1d68834b277fc4abdbd7e24b4b2dd1525b1
SSDEEP

1536:4arEyTj4/ydHQ7zoFhgeKpkoTuOz0ZXzAYbZkNw:LEyA0H4oFhgjeEuOAZDxNkNw

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ca56f886230d54aa1dc5f9025e30d837
- Size
  
  68KB
- MD5
  
  ca56f886230d54aa1dc5f9025e30d837
- SHA1
  
  c64e66985f82d650682db95818229bd790fbaaf1
- SHA256
  
  36b9bfc07a5dbe39399a9a7dd7218d2be5b0542057e6e63e3425c9df58c5e86e
- SHA512
  
  72619cedd4a089276412b3c515eba349095057b3503a0299e99b3084fd458adfb1959473205538438021e2052cb1a1d68834b277fc4abdbd7e24b4b2dd1525b1
- SSDEEP
  
  1536:4arEyTj4/ydHQ7zoFhgeKpkoTuOz0ZXzAYbZkNw:LEyA0H4oFhgjeEuOAZDxNkNw
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2