73744fc10d250361bd416b8d57c1b18b035608adffd3fe6d9699c664bd1996d6 | Triage

Sharing

General

Target

73744fc10d250361bd416b8d57c1b18b035608adffd3fe6d9699c664bd1996d6
Size

140KB
Sample

220919-av58fscgem
MD5

7b65e63c36e781c71391a0484a9c9fc6
SHA1

77b2d53fe45b72b3bf8a23ea3f48a66523e77fba
SHA256

73744fc10d250361bd416b8d57c1b18b035608adffd3fe6d9699c664bd1996d6
SHA512

748ebc43558ee47def86b494663d05e89748399b0cf4e5bad4485ae029eb60515f457e099d1ab2e33f874e1f04d4ec2a9e9aec41c909fcb110776a6c86179031
SSDEEP

1536:uZ7RvfEJgmC3YsEQnXfAjHDee3GjZfICQcOFGPJ5afsdNn5vVkkQQ7:2FNFveee3GjB9OFy5i+5Nkkr

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  73744fc10d250361bd416b8d57c1b18b035608adffd3fe6d9699c664bd1996d6
- Size
  
  140KB
- MD5
  
  7b65e63c36e781c71391a0484a9c9fc6
- SHA1
  
  77b2d53fe45b72b3bf8a23ea3f48a66523e77fba
- SHA256
  
  73744fc10d250361bd416b8d57c1b18b035608adffd3fe6d9699c664bd1996d6
- SHA512
  
  748ebc43558ee47def86b494663d05e89748399b0cf4e5bad4485ae029eb60515f457e099d1ab2e33f874e1f04d4ec2a9e9aec41c909fcb110776a6c86179031
- SSDEEP
  
  1536:uZ7RvfEJgmC3YsEQnXfAjHDee3GjZfICQcOFGPJ5afsdNn5vVkkQQ7:2FNFveee3GjB9OFy5i+5Nkkr
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2