dad9f3bb6d49dc11e871b51422182d79c1e35c58d50bba00912dc3079274d3ca | Triage

Sharing

General

Target

dad9f3bb6d49dc11e871b51422182d79c1e35c58d50bba00912dc3079274d3ca
Size

32KB
Sample

221011-vppczafbgr
MD5

56be4cc53c1c3da793bc2bc4a7915f0b
SHA1

ff73a0f1da31d4b446fea26f6302cb088880e2ba
SHA256

dad9f3bb6d49dc11e871b51422182d79c1e35c58d50bba00912dc3079274d3ca
SHA512

83eb8894b137f1ddfa0184818224d04b268de8f4e623a16b1a939ec9ddfe4f648ab845a29f796c7e17cdce2129a942b0d71133ddc2d57c7c8bc465e267d2655b
SSDEEP

384:f98xUHQvHsw2fvoy4/q8zLeiaerhPVozyTWmGs6ef+nCFa/p1Uq4g:WwmsZvoBqop/yAWmF6FnKg

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  dad9f3bb6d49dc11e871b51422182d79c1e35c58d50bba00912dc3079274d3ca
- Size
  
  32KB
- MD5
  
  56be4cc53c1c3da793bc2bc4a7915f0b
- SHA1
  
  ff73a0f1da31d4b446fea26f6302cb088880e2ba
- SHA256
  
  dad9f3bb6d49dc11e871b51422182d79c1e35c58d50bba00912dc3079274d3ca
- SHA512
  
  83eb8894b137f1ddfa0184818224d04b268de8f4e623a16b1a939ec9ddfe4f648ab845a29f796c7e17cdce2129a942b0d71133ddc2d57c7c8bc465e267d2655b
- SSDEEP
  
  384:f98xUHQvHsw2fvoy4/q8zLeiaerhPVozyTWmGs6ef+nCFa/p1Uq4g:WwmsZvoBqop/yAWmF6FnKg
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2