df1fe22ec11baf8c2188f8025b06c1798ff4be3d4e8f7c201c621511a6d8709e | Triage

Sharing

General

Target

df1fe22ec11baf8c2188f8025b06c1798ff4be3d4e8f7c201c621511a6d8709e
Size

323KB
Sample

221123-p5c2zsga91
MD5

14e96f44ddc99aa33dfd1b6325985acd
SHA1

7a9f1f49ee6d3078f3bc013adc785f7d1ca9f778
SHA256

df1fe22ec11baf8c2188f8025b06c1798ff4be3d4e8f7c201c621511a6d8709e
SHA512

11eada26c4d0646069763f84c7571ae5aea248d4c19c04bad87865d0f4a73086562fc95cb2c3da148034e2d8c0d531c1b2e4ca0ec474ea729fc41131968caf3c
SSDEEP

3072:znjFDSD8uzOMDhAc7KF3uyvKam7ZrxHKWf:znj1SIEKEt/Hd

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  df1fe22ec11baf8c2188f8025b06c1798ff4be3d4e8f7c201c621511a6d8709e
- Size
  
  323KB
- MD5
  
  14e96f44ddc99aa33dfd1b6325985acd
- SHA1
  
  7a9f1f49ee6d3078f3bc013adc785f7d1ca9f778
- SHA256
  
  df1fe22ec11baf8c2188f8025b06c1798ff4be3d4e8f7c201c621511a6d8709e
- SHA512
  
  11eada26c4d0646069763f84c7571ae5aea248d4c19c04bad87865d0f4a73086562fc95cb2c3da148034e2d8c0d531c1b2e4ca0ec474ea729fc41131968caf3c
- SSDEEP
  
  3072:znjFDSD8uzOMDhAc7KF3uyvKam7ZrxHKWf:znj1SIEKEt/Hd
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2