71f3478d96554c6904c6a11c2718dafe791e9cddc248bfccac81ac8a1d8210f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71f3478d96554c6904c6a11c2718dafe791e9cddc248bfccac81ac8a1d8210f6
Size

274KB
Sample

221029-2es2qshgh5
MD5

843cb883ecbaa4304279aef747719eb0
SHA1

832a60783977653833ec94069d5b33344c3f77bb
SHA256

71f3478d96554c6904c6a11c2718dafe791e9cddc248bfccac81ac8a1d8210f6
SHA512

0214c45f813303f6fec2b27ab9ebf56787f3765dfc42d5dda1bfc1936788d8cde17cd10f7e70afc690599fc01db78067a28c9f5b8712b4b28a994f0ce798afcd
SSDEEP

6144:M1s2nF4sc5vpZgvox6M2LQZ7cRP6Q3jAdfE8Gehmm:oF4seZgcCL+7c3jIE8l

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  71f3478d96554c6904c6a11c2718dafe791e9cddc248bfccac81ac8a1d8210f6
- Size
  
  274KB
- MD5
  
  843cb883ecbaa4304279aef747719eb0
- SHA1
  
  832a60783977653833ec94069d5b33344c3f77bb
- SHA256
  
  71f3478d96554c6904c6a11c2718dafe791e9cddc248bfccac81ac8a1d8210f6
- SHA512
  
  0214c45f813303f6fec2b27ab9ebf56787f3765dfc42d5dda1bfc1936788d8cde17cd10f7e70afc690599fc01db78067a28c9f5b8712b4b28a994f0ce798afcd
- SSDEEP
  
  6144:M1s2nF4sc5vpZgvox6M2LQZ7cRP6Q3jAdfE8Gehmm:oF4seZgcCL+7c3jIE8l
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2