3d6d39b74144319e6ef312a2933a085225c29c72b330736bf4b80a494c4fabdb | Triage

Sharing

General

Target

3d6d39b74144319e6ef312a2933a085225c29c72b330736bf4b80a494c4fabdb
Size

140KB
Sample

221126-25x4daca94
MD5

e8b426b22f61863f3b21eaf0326497b8
SHA1

4a438c5d3459abc06d9d9d065b38c2770c134200
SHA256

3d6d39b74144319e6ef312a2933a085225c29c72b330736bf4b80a494c4fabdb
SHA512

0e19162b96daa90ce1306acf45379024537dc594a797ec98567c938b9f2f4ecfa500bb42c1edf35ef969fe1f72c638e29176719a707c28b960ca274c4d1bcccf
SSDEEP

1536:TN7+PoYPAXcjhDIALxW2+YOCfaTRipAoq7JrxLlQjd68TkNY5YeMRY8Wx7Et8TkN:wPxPGcdD1LxL+PCitiWapf5zMgxkc

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3d6d39b74144319e6ef312a2933a085225c29c72b330736bf4b80a494c4fabdb
- Size
  
  140KB
- MD5
  
  e8b426b22f61863f3b21eaf0326497b8
- SHA1
  
  4a438c5d3459abc06d9d9d065b38c2770c134200
- SHA256
  
  3d6d39b74144319e6ef312a2933a085225c29c72b330736bf4b80a494c4fabdb
- SHA512
  
  0e19162b96daa90ce1306acf45379024537dc594a797ec98567c938b9f2f4ecfa500bb42c1edf35ef969fe1f72c638e29176719a707c28b960ca274c4d1bcccf
- SSDEEP
  
  1536:TN7+PoYPAXcjhDIALxW2+YOCfaTRipAoq7JrxLlQjd68TkNY5YeMRY8Wx7Et8TkN:wPxPGcdD1LxL+PCitiWapf5zMgxkc
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2