e01e77a43a43d919359d7716fc19c6286eaadf08cbec4442741789bd680594a0 | Triage

Sharing

General

Target

e01e77a43a43d919359d7716fc19c6286eaadf08cbec4442741789bd680594a0
Size

196KB
Sample

221124-e1gt9scb6s
MD5

03c97952e19ce93941404ef9a3a935f5
SHA1

ec7edb6a0b5f14c7017ba645e269c8598633e384
SHA256

e01e77a43a43d919359d7716fc19c6286eaadf08cbec4442741789bd680594a0
SHA512

713b638f2f4f0870798ae66e14a81de302612b8aec3dc4cb1ce169b6df9be3aa89746dae4b31b0cd98ada46bd0fda3e42c8b4992c04ef6635bd112a137339f7f
SSDEEP

3072:9udusODvGZVHhX1drkr3k1qusMrf/Kf2DWJEi/i0D2D7oyCT8nVn1QJsYvVnGd+z:59+phXzpsML/E2DH0yDTV13Y5z

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e01e77a43a43d919359d7716fc19c6286eaadf08cbec4442741789bd680594a0
- Size
  
  196KB
- MD5
  
  03c97952e19ce93941404ef9a3a935f5
- SHA1
  
  ec7edb6a0b5f14c7017ba645e269c8598633e384
- SHA256
  
  e01e77a43a43d919359d7716fc19c6286eaadf08cbec4442741789bd680594a0
- SHA512
  
  713b638f2f4f0870798ae66e14a81de302612b8aec3dc4cb1ce169b6df9be3aa89746dae4b31b0cd98ada46bd0fda3e42c8b4992c04ef6635bd112a137339f7f
- SSDEEP
  
  3072:9udusODvGZVHhX1drkr3k1qusMrf/Kf2DWJEi/i0D2D7oyCT8nVn1QJsYvVnGd+z:59+phXzpsML/E2DH0yDTV13Y5z
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2