Overview

overview

6

Static

static

3b02706335...a5.exe

windows7-x64

6

3b02706335...a5.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5

  • Size

    183KB

  • Sample

    221123-rw458ahf85

  • MD5

    38b67445646e793a2b10987e94c3132b

  • SHA1

    f5c6c180f7a59030a96ef4579cad67a4e86352a8

  • SHA256

    3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5

  • SHA512

    d25022f3911242f983a3f89ff35de4d0303ac038410ecc5dc5d0a7b22711d9d5bf1c640a588d08d922525989b708c1e22d3541481d444b7f991a0458341f98ed

  • SSDEEP

    3072:aLpxTJJWCXx7vCgZsr4ZEruqOhYu976KZ+Bgyplb4+PFDHHOM5EQ:at9RdvCgmvyHO4+5nF

Score
6/10
persistence

Malware Config

Targets

    • Target

      3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5

    • Size

      183KB

    • MD5

      38b67445646e793a2b10987e94c3132b

    • SHA1

      f5c6c180f7a59030a96ef4579cad67a4e86352a8

    • SHA256

      3b02706335fe96a4699d76fe238a78332ef1b814dd8dae71fb87d07a980b76a5

    • SHA512

      d25022f3911242f983a3f89ff35de4d0303ac038410ecc5dc5d0a7b22711d9d5bf1c640a588d08d922525989b708c1e22d3541481d444b7f991a0458341f98ed

    • SSDEEP

      3072:aLpxTJJWCXx7vCgZsr4ZEruqOhYu976KZ+Bgyplb4+PFDHHOM5EQ:at9RdvCgmvyHO4+5nF

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks