797eb23379c02fd8aa67009f44f66c63ecc07ec954e9b4b20664a8ab4f7c969a | Triage

Sharing

General

Target

797eb23379c02fd8aa67009f44f66c63ecc07ec954e9b4b20664a8ab4f7c969a
Size

588KB
Sample

221123-lqg6lsfd6y
MD5

af0e1464973db49aba5c54b0cea301e2
SHA1

0a23457b3f66d70874ba3d15f07c6499a21d00ac
SHA256

797eb23379c02fd8aa67009f44f66c63ecc07ec954e9b4b20664a8ab4f7c969a
SHA512

e56ea14d3ea1e3c3b735049ae06b89304735723f080f5776a5623452b2b483930555a6a1c423240ee7dbcfd34232cd4640b9c33007f42552e5dfaecbf477e6a2
SSDEEP

12288:PAya3DR+3ZOfI4w+yXOxGHXdC+SOCAnDa6SsWz:P4N+pHpXOx6svOd2dsC

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  797eb23379c02fd8aa67009f44f66c63ecc07ec954e9b4b20664a8ab4f7c969a
- Size
  
  588KB
- MD5
  
  af0e1464973db49aba5c54b0cea301e2
- SHA1
  
  0a23457b3f66d70874ba3d15f07c6499a21d00ac
- SHA256
  
  797eb23379c02fd8aa67009f44f66c63ecc07ec954e9b4b20664a8ab4f7c969a
- SHA512
  
  e56ea14d3ea1e3c3b735049ae06b89304735723f080f5776a5623452b2b483930555a6a1c423240ee7dbcfd34232cd4640b9c33007f42552e5dfaecbf477e6a2
- SSDEEP
  
  12288:PAya3DR+3ZOfI4w+yXOxGHXdC+SOCAnDa6SsWz:P4N+pHpXOx6svOd2dsC
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2