57bd6ec900f2fed4fe5899e334c60b65a520d769ffb7d6810a4e89eac1f9574a | Triage

Sharing

General

Target

57bd6ec900f2fed4fe5899e334c60b65a520d769ffb7d6810a4e89eac1f9574a
Size

188KB
Sample

221123-lzwqcsgb2t
MD5

15aac82e279f96b16e47f6c6f5c2f725
SHA1

5e746b2af45b8a404b1e076ad4b422849bfe8dc2
SHA256

57bd6ec900f2fed4fe5899e334c60b65a520d769ffb7d6810a4e89eac1f9574a
SHA512

0ec6598da4e570b0ef32d4ba0ee1a04c64f7558478d27d72bc0653662804f8c93a54db55e11781776706bbc3cd7597d8d77c5880981a5901eb3e26a5d056694e
SSDEEP

3072:/ysR8vJdHkDUzmykgvls4qQXvvSGunAYXN+CAIFoAn:asR8vyUogNs4qQXvvSDf+BIKs

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  57bd6ec900f2fed4fe5899e334c60b65a520d769ffb7d6810a4e89eac1f9574a
- Size
  
  188KB
- MD5
  
  15aac82e279f96b16e47f6c6f5c2f725
- SHA1
  
  5e746b2af45b8a404b1e076ad4b422849bfe8dc2
- SHA256
  
  57bd6ec900f2fed4fe5899e334c60b65a520d769ffb7d6810a4e89eac1f9574a
- SHA512
  
  0ec6598da4e570b0ef32d4ba0ee1a04c64f7558478d27d72bc0653662804f8c93a54db55e11781776706bbc3cd7597d8d77c5880981a5901eb3e26a5d056694e
- SSDEEP
  
  3072:/ysR8vJdHkDUzmykgvls4qQXvvSGunAYXN+CAIFoAn:asR8vyUogNs4qQXvvSDf+BIKs
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2