c4355736419e1e8c453ebbc5c19d0bbe21988d379a556ae529ac3c93f7ee9f6d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4355736419e1e8c453ebbc5c19d0bbe21988d379a556ae529ac3c93f7ee9f6d
Size

1.3MB
Sample

221011-f9ayragdb9
MD5

770f6ef7a86b0a910c3b3dccb704e3e4
SHA1

5ad76d611b3e77e612441d0a3516b3cc2250bd50
SHA256

c4355736419e1e8c453ebbc5c19d0bbe21988d379a556ae529ac3c93f7ee9f6d
SHA512

8217705d9683ea9a6c19ad4e2d957ff371d6da0c471078b01dfa59ee082bd198c162cfbe7ede907f8717132f98dc4328396045651ce0cbc4bda4b9dd4e00deb9
SSDEEP

24576:1aHMv6Corjqny/QL+u+oSrGf9DHtBpfp7/OMLZDM7BgTCWqucud1EE1O:11vqjd/QL9Wk9TLZcwDM7BsFqzebO

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  c4355736419e1e8c453ebbc5c19d0bbe21988d379a556ae529ac3c93f7ee9f6d
- Size
  
  1.3MB
- MD5
  
  770f6ef7a86b0a910c3b3dccb704e3e4
- SHA1
  
  5ad76d611b3e77e612441d0a3516b3cc2250bd50
- SHA256
  
  c4355736419e1e8c453ebbc5c19d0bbe21988d379a556ae529ac3c93f7ee9f6d
- SHA512
  
  8217705d9683ea9a6c19ad4e2d957ff371d6da0c471078b01dfa59ee082bd198c162cfbe7ede907f8717132f98dc4328396045651ce0cbc4bda4b9dd4e00deb9
- SSDEEP
  
  24576:1aHMv6Corjqny/QL+u+oSrGf9DHtBpfp7/OMLZDM7BgTCWqucud1EE1O:11vqjd/QL9Wk9TLZcwDM7BsFqzebO
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2