Overview

overview

6

Static

static

780ae76554...4e.exe

windows7-x64

5

780ae76554...4e.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    780ae7655494133bf4cdf70324e7f2b5ec9626783fd671f79e77833b779cf74e

  • Size

    172KB

  • Sample

    221126-2nlzsaec2t

  • MD5

    ccdd18076c1acd3c196414808388f452

  • SHA1

    94ca7f06d0b554eefd02c79c76fd52ed46163a17

  • SHA256

    780ae7655494133bf4cdf70324e7f2b5ec9626783fd671f79e77833b779cf74e

  • SHA512

    f0eea043f7b7bdce0a6375249ba1b40b9362b33abf8eba323c65525786acd5ce59316f28ef98da7e65f26f37916d657d342788e978ce8d1f5b392479f0ad4f77

  • SSDEEP

    1536:Y+MwtP+jOPdIkppDPAyp6EnxWqZ7+c0DwMAXHRZP:0wtEkrDPAyp9W+7+ckGHL

Score
6/10
persistence

Malware Config

Targets

    • Target

      780ae7655494133bf4cdf70324e7f2b5ec9626783fd671f79e77833b779cf74e

    • Size

      172KB

    • MD5

      ccdd18076c1acd3c196414808388f452

    • SHA1

      94ca7f06d0b554eefd02c79c76fd52ed46163a17

    • SHA256

      780ae7655494133bf4cdf70324e7f2b5ec9626783fd671f79e77833b779cf74e

    • SHA512

      f0eea043f7b7bdce0a6375249ba1b40b9362b33abf8eba323c65525786acd5ce59316f28ef98da7e65f26f37916d657d342788e978ce8d1f5b392479f0ad4f77

    • SSDEEP

      1536:Y+MwtP+jOPdIkppDPAyp6EnxWqZ7+c0DwMAXHRZP:0wtEkrDPAyp9W+7+ckGHL

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks