169b62e860d591d687248fb2b45861ed19d0720da4513a898ac95c313b696d1d | Triage

Sharing

General

Target

169b62e860d591d687248fb2b45861ed19d0720da4513a898ac95c313b696d1d
Size

186KB
Sample

221126-apdw1shd23
MD5

e16d01d0118e21114dfa768ea202b000
SHA1

67f655d7b56de913b5ce2935d2c95596087267bc
SHA256

169b62e860d591d687248fb2b45861ed19d0720da4513a898ac95c313b696d1d
SHA512

70425b4842abcca59a524c5908185f00643fe56fd3bbd8f98de8e0214b68e861dafe99bc5cf993e5d05fd3ac1236202a53962244ec6e204a330e996fb6ffb178
SSDEEP

1536:AlynghFPBs1hE+pnkyjeK56NNUcLDFr+ycjAcMP:TpG+pnkyjpUNC2FrIAcq

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  169b62e860d591d687248fb2b45861ed19d0720da4513a898ac95c313b696d1d
- Size
  
  186KB
- MD5
  
  e16d01d0118e21114dfa768ea202b000
- SHA1
  
  67f655d7b56de913b5ce2935d2c95596087267bc
- SHA256
  
  169b62e860d591d687248fb2b45861ed19d0720da4513a898ac95c313b696d1d
- SHA512
  
  70425b4842abcca59a524c5908185f00643fe56fd3bbd8f98de8e0214b68e861dafe99bc5cf993e5d05fd3ac1236202a53962244ec6e204a330e996fb6ffb178
- SSDEEP
  
  1536:AlynghFPBs1hE+pnkyjeK56NNUcLDFr+ycjAcMP:TpG+pnkyjpUNC2FrIAcq
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2