91b70ec4843ec323ad956b3aa9e4ed0813d6fee3fa99336d2e30b985b160f345 | Triage

Sharing

General

Target

91b70ec4843ec323ad956b3aa9e4ed0813d6fee3fa99336d2e30b985b160f345
Size

1.3MB
Sample

221123-ngn9nsgg92
MD5

80fef046df90a8c62a2c6f9acf1187ee
SHA1

b214c560e00fb1814623432c72f23e36db9aa3fb
SHA256

91b70ec4843ec323ad956b3aa9e4ed0813d6fee3fa99336d2e30b985b160f345
SHA512

792b3c6bbc3e73296d70bb97aa89703e7dac7277fe2ff4c93507ffb1301c8b22f46647d789afc816535e13d3df9ae1109032f957b77b3cd8c42a26f4b7ef6ad9
SSDEEP

24576:brKqlGCPcJKwybUDwEZZODYmR9G+gnbkk6XRJfe3DqYO/KpLwFfngWX4VmJPakA:brKo4ZwCOnYjVmJPaD

Score

5^/10

Malware Config

Targets

- Target
  
  91b70ec4843ec323ad956b3aa9e4ed0813d6fee3fa99336d2e30b985b160f345
- Size
  
  1.3MB
- MD5
  
  80fef046df90a8c62a2c6f9acf1187ee
- SHA1
  
  b214c560e00fb1814623432c72f23e36db9aa3fb
- SHA256
  
  91b70ec4843ec323ad956b3aa9e4ed0813d6fee3fa99336d2e30b985b160f345
- SHA512
  
  792b3c6bbc3e73296d70bb97aa89703e7dac7277fe2ff4c93507ffb1301c8b22f46647d789afc816535e13d3df9ae1109032f957b77b3cd8c42a26f4b7ef6ad9
- SSDEEP
  
  24576:brKqlGCPcJKwybUDwEZZODYmR9G+gnbkk6XRJfe3DqYO/KpLwFfngWX4VmJPakA:brKo4ZwCOnYjVmJPaD
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2