806cc60db90ba37c6971a05f2d2568d0cc452b26f026a21b1a98e78b2d5af7bd | Triage

Sharing

General

Target

806cc60db90ba37c6971a05f2d2568d0cc452b26f026a21b1a98e78b2d5af7bd
Size

1.6MB
Sample

221125-pkysysgc27
MD5

4f9d1f065b29db78b1a9b487c006f6c0
SHA1

74f5874783385b0889a499063cefaefc96df6ac1
SHA256

806cc60db90ba37c6971a05f2d2568d0cc452b26f026a21b1a98e78b2d5af7bd
SHA512

843bf7ba805b1acb0ea62f5d9771f5e410a505847f9e23e9ee66514052e8713ce017b798a601fdee4136034edd5e57b6c5ae2cc0ada87968f115c9bc6e5b9659
SSDEEP

49152:JMjTlOtSQ3WeMISc8BtWacZsdsFE1Y7u7l9J86U2j:JS6/33Mc8BtW3OdsO1YYl9B

Score

5^/10

Malware Config

Targets

- Target
  
  806cc60db90ba37c6971a05f2d2568d0cc452b26f026a21b1a98e78b2d5af7bd
- Size
  
  1.6MB
- MD5
  
  4f9d1f065b29db78b1a9b487c006f6c0
- SHA1
  
  74f5874783385b0889a499063cefaefc96df6ac1
- SHA256
  
  806cc60db90ba37c6971a05f2d2568d0cc452b26f026a21b1a98e78b2d5af7bd
- SHA512
  
  843bf7ba805b1acb0ea62f5d9771f5e410a505847f9e23e9ee66514052e8713ce017b798a601fdee4136034edd5e57b6c5ae2cc0ada87968f115c9bc6e5b9659
- SSDEEP
  
  49152:JMjTlOtSQ3WeMISc8BtWacZsdsFE1Y7u7l9J86U2j:JS6/33Mc8BtW3OdsO1YYl9B
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2