68be2ba319d445f1a1d7da73d9ad26b894f55f85f1b943ab5b5251ddfc0bc439 | Triage

Sharing

General

Target

68be2ba31.exe
Size

144KB
Sample

201120-4tlxsxj57s
MD5

1c1d7bf3ad926f3cdf0befbc5205a1fe
SHA1

a766d7dd2055edb485d72f1f5319e9b2492b1d96
SHA256

68be2ba319d445f1a1d7da73d9ad26b894f55f85f1b943ab5b5251ddfc0bc439
SHA512

77a1da28aa74a1a994e1aaf48faa8f74718682e96de4a6bbd3216555219c3a5bc578bc03521faafc5ce98540c751df6b8fa45f043c12e6602f560e284715cb8d

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  68be2ba31.exe
- Size
  
  144KB
- MD5
  
  1c1d7bf3ad926f3cdf0befbc5205a1fe
- SHA1
  
  a766d7dd2055edb485d72f1f5319e9b2492b1d96
- SHA256
  
  68be2ba319d445f1a1d7da73d9ad26b894f55f85f1b943ab5b5251ddfc0bc439
- SHA512
  
  77a1da28aa74a1a994e1aaf48faa8f74718682e96de4a6bbd3216555219c3a5bc578bc03521faafc5ce98540c751df6b8fa45f043c12e6602f560e284715cb8d
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2