3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5 | Triage

Sharing

General

Target

3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5
Size

183KB
Sample

221123-rw458ahf85
MD5

38b67445646e793a2b10987e94c3132b
SHA1

f5c6c180f7a59030a96ef4579cad67a4e86352a8
SHA256

3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5
SHA512

d25022f3911242f983a3f89ff35de4d0303ac038410ecc5dc5d0a7b22711d9d5bf1c640a588d08d922525989b708c1e22d3541481d444b7f991a0458341f98ed
SSDEEP

3072:aLpxTJJWCXx7vCgZsr4ZEruqOhYu976KZ+Bgyplb4+PFDHHOM5EQ:at9RdvCgmvyHO4+5nF

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5
- Size
  
  183KB
- MD5
  
  38b67445646e793a2b10987e94c3132b
- SHA1
  
  f5c6c180f7a59030a96ef4579cad67a4e86352a8
- SHA256
  
  3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5
- SHA512
  
  d25022f3911242f983a3f89ff35de4d0303ac038410ecc5dc5d0a7b22711d9d5bf1c640a588d08d922525989b708c1e22d3541481d444b7f991a0458341f98ed
- SSDEEP
  
  3072:aLpxTJJWCXx7vCgZsr4ZEruqOhYu976KZ+Bgyplb4+PFDHHOM5EQ:at9RdvCgmvyHO4+5nF
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2