7906b8704db10250c7d028267318553462c524ee85d002596ccc67b48a06be0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7906b8704db10250c7d028267318553462c524ee85d002596ccc67b48a06be0a
Size

65KB
Sample

221121-q993ysga71
MD5

3d50ee19f2a1f607a13d0d226050abd1
SHA1

e6110f2b6663661226648cce5f82b00e9138e1aa
SHA256

7906b8704db10250c7d028267318553462c524ee85d002596ccc67b48a06be0a
SHA512

6078bdffe889c08786b8ccab16237796802f4b6d4db35edabdf41caa4b44aa50ec7fccf1ae8d4ad7033436b4ee1869980f3a0a32f7c47720f2e586004dcb493f
SSDEEP

768:X7idX+dtbOIDnPxl+2+UYWz3zfxmM9wG6lxAarxILWFbCmg:X7idOdtbOIDH3YsUMKG+xAaVIaNCmg

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  7906b8704db10250c7d028267318553462c524ee85d002596ccc67b48a06be0a
- Size
  
  65KB
- MD5
  
  3d50ee19f2a1f607a13d0d226050abd1
- SHA1
  
  e6110f2b6663661226648cce5f82b00e9138e1aa
- SHA256
  
  7906b8704db10250c7d028267318553462c524ee85d002596ccc67b48a06be0a
- SHA512
  
  6078bdffe889c08786b8ccab16237796802f4b6d4db35edabdf41caa4b44aa50ec7fccf1ae8d4ad7033436b4ee1869980f3a0a32f7c47720f2e586004dcb493f
- SSDEEP
  
  768:X7idX+dtbOIDnPxl+2+UYWz3zfxmM9wG6lxAarxILWFbCmg:X7idOdtbOIDH3YsUMKG+xAaVIaNCmg
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2