d4656eb7b9a56a75d9489113d2c1f8ba15b3ea17d1640427bfdc0ebbef57580a | Triage

Sharing

General

Target

d4656eb7b9a56a75d9489113d2c1f8ba15b3ea17d1640427bfdc0ebbef57580a
Size

70KB
Sample

221107-t54l6agcb2
MD5

00a24b7f6d79d070c6aa154e02d3a6e6
SHA1

e3847d99b1d2d1e3817c2b05ea91027e7a7b77f8
SHA256

d4656eb7b9a56a75d9489113d2c1f8ba15b3ea17d1640427bfdc0ebbef57580a
SHA512

bcf2f865b409eadb754e48ed8f4b59f1209109d23fe7edb32f17c024a5f7ae9f890c9912ea883f31a1019372ff796dc39c9a2f0bb395d2a831693acbb1e39c40
SSDEEP

1536:9rUFD/C0WWum6e6mmfASwwb5RUUgojiiAT16dg5Pxx74jv:BcDaNWuhe69fXwwb5RUUgoG/T1Ag534b

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  d4656eb7b9a56a75d9489113d2c1f8ba15b3ea17d1640427bfdc0ebbef57580a
- Size
  
  70KB
- MD5
  
  00a24b7f6d79d070c6aa154e02d3a6e6
- SHA1
  
  e3847d99b1d2d1e3817c2b05ea91027e7a7b77f8
- SHA256
  
  d4656eb7b9a56a75d9489113d2c1f8ba15b3ea17d1640427bfdc0ebbef57580a
- SHA512
  
  bcf2f865b409eadb754e48ed8f4b59f1209109d23fe7edb32f17c024a5f7ae9f890c9912ea883f31a1019372ff796dc39c9a2f0bb395d2a831693acbb1e39c40
- SSDEEP
  
  1536:9rUFD/C0WWum6e6mmfASwwb5RUUgojiiAT16dg5Pxx74jv:BcDaNWuhe69fXwwb5RUUgoG/T1Ag534b
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2