44a5c10b4edaa66df39852179e15362d060036b7d73609156409452f2c7d5453 | Triage

Sharing

General

Target

44a5c10b4edaa66df39852179e15362d060036b7d73609156409452f2c7d5453
Size

68KB
Sample

221123-rs34racd8t
MD5

4a4c2a2938724af299bdbe7907dff657
SHA1

924c3310ec150da3e4778ed12c0b78f2a24e7a9b
SHA256

44a5c10b4edaa66df39852179e15362d060036b7d73609156409452f2c7d5453
SHA512

93ee65139152a268f8b170251c15ebe8eb97b1f8e90ff4eae719b93304f12f82f1aca83919ede59c1ccc9fc3cdd96f1c896dacab3f9ce6afce5df5c74f9853fc
SSDEEP

1536:NGUQT9Jp6dliEq8VsIODHX86nNkPC7uUu:47pYliDAv4HX86ne9

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  44a5c10b4edaa66df39852179e15362d060036b7d73609156409452f2c7d5453
- Size
  
  68KB
- MD5
  
  4a4c2a2938724af299bdbe7907dff657
- SHA1
  
  924c3310ec150da3e4778ed12c0b78f2a24e7a9b
- SHA256
  
  44a5c10b4edaa66df39852179e15362d060036b7d73609156409452f2c7d5453
- SHA512
  
  93ee65139152a268f8b170251c15ebe8eb97b1f8e90ff4eae719b93304f12f82f1aca83919ede59c1ccc9fc3cdd96f1c896dacab3f9ce6afce5df5c74f9853fc
- SSDEEP
  
  1536:NGUQT9Jp6dliEq8VsIODHX86nNkPC7uUu:47pYliDAv4HX86ne9
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2