3c074926ce4981afc9867f7244c9a29031e4a1a86162b0168d1ee4eda35d48f3 | Triage

Sharing

General

Target

3c074926ce4981afc9867f7244c9a29031e4a1a86162b0168d1ee4eda35d48f3
Size

474KB
Sample

221125-prq2pagf98
MD5

4bb24dee579cdc4b353f170c04f662af
SHA1

cf8623df295c7a6e155f7df622e0a4ef9c8085fa
SHA256

3c074926ce4981afc9867f7244c9a29031e4a1a86162b0168d1ee4eda35d48f3
SHA512

0554484e0d604578e89ca2499cd66bd78bd6856ef15cd1176f7d9e9add6c5a91ca954a333fc9c327f825b5f5639dc66ecde38fdcdcf8eb4f7b26c46f2b18fb4f
SSDEEP

12288:QzanSL88avFSYx3M/61pvggSgXfim9g4yZze0cIGm:uaSJa19BvGgviv9uN

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3c074926ce4981afc9867f7244c9a29031e4a1a86162b0168d1ee4eda35d48f3
- Size
  
  474KB
- MD5
  
  4bb24dee579cdc4b353f170c04f662af
- SHA1
  
  cf8623df295c7a6e155f7df622e0a4ef9c8085fa
- SHA256
  
  3c074926ce4981afc9867f7244c9a29031e4a1a86162b0168d1ee4eda35d48f3
- SHA512
  
  0554484e0d604578e89ca2499cd66bd78bd6856ef15cd1176f7d9e9add6c5a91ca954a333fc9c327f825b5f5639dc66ecde38fdcdcf8eb4f7b26c46f2b18fb4f
- SSDEEP
  
  12288:QzanSL88avFSYx3M/61pvggSgXfim9g4yZze0cIGm:uaSJa19BvGgviv9uN
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2