286d99f596bd6204fe3f7bdbfd632cc647803c448c9c5119885eb1a3202bbdac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

286d99f596bd6204fe3f7bdbfd632cc647803c448c9c5119885eb1a3202bbdac
Size

1.4MB
Sample

221030-w1e44seegj
MD5

82620964fd526819414ed4ca9bd4832d
SHA1

838960efc83509425cb2c3a426925a1a1b010db1
SHA256

286d99f596bd6204fe3f7bdbfd632cc647803c448c9c5119885eb1a3202bbdac
SHA512

3cc20135a2468d56a903d8e95802359473a27d9b4238eaa4b82416aed26d5ea579df84060f247b058a4e0990e0b4cb0ed321809c854ad2f94b16777bff744eec
SSDEEP

24576:ck+++hBIRgRZnk4Y1KWmQo7JsL4YQMRk7ybHbDRCRIsPm0/PdauEr1DLdp:Shz99u4YXS7ynVCGsPjSr1f3

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  286d99f596bd6204fe3f7bdbfd632cc647803c448c9c5119885eb1a3202bbdac
- Size
  
  1.4MB
- MD5
  
  82620964fd526819414ed4ca9bd4832d
- SHA1
  
  838960efc83509425cb2c3a426925a1a1b010db1
- SHA256
  
  286d99f596bd6204fe3f7bdbfd632cc647803c448c9c5119885eb1a3202bbdac
- SHA512
  
  3cc20135a2468d56a903d8e95802359473a27d9b4238eaa4b82416aed26d5ea579df84060f247b058a4e0990e0b4cb0ed321809c854ad2f94b16777bff744eec
- SSDEEP
  
  24576:ck+++hBIRgRZnk4Y1KWmQo7JsL4YQMRk7ybHbDRCRIsPm0/PdauEr1DLdp:Shz99u4YXS7ynVCGsPjSr1f3
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2