3d750de58563f860cd8f8674ce08e96b1f4e3ae3564c10efe61c50738056b0f2 | Triage

Sharing

General

Target

3d750de58563f860cd8f8674ce08e96b1f4e3ae3564c10efe61c50738056b0f2
Size

208KB
Sample

220703-djn2kscggr
MD5

a633ccbf2a9d299a06512319a0286777
SHA1

839a0ef54024dcfcbfbcecb0adf3bf0de1aa98da
SHA256

3d750de58563f860cd8f8674ce08e96b1f4e3ae3564c10efe61c50738056b0f2
SHA512

78584f6702f4a4d880430a35178fa769d90489c42ae62edebe6a4169514a53a210c744763affd5c12eda9dc1d996ee40d3f7788a7d66e29553a2b2c26a1bc0a8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3d750de58563f860cd8f8674ce08e96b1f4e3ae3564c10efe61c50738056b0f2
- Size
  
  208KB
- MD5
  
  a633ccbf2a9d299a06512319a0286777
- SHA1
  
  839a0ef54024dcfcbfbcecb0adf3bf0de1aa98da
- SHA256
  
  3d750de58563f860cd8f8674ce08e96b1f4e3ae3564c10efe61c50738056b0f2
- SHA512
  
  78584f6702f4a4d880430a35178fa769d90489c42ae62edebe6a4169514a53a210c744763affd5c12eda9dc1d996ee40d3f7788a7d66e29553a2b2c26a1bc0a8
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2