7a0f6bba6402a2c611287df3c526f3f1f053532df60386d2e9fe59f3bb68ffca | Triage

Sharing

General

Target

7a0f6bba6402a2c611287df3c526f3f1f053532df60386d2e9fe59f3bb68ffca
Size

580KB
Sample

221127-ndewtscf93
MD5

dce381e27ad5cd038abaa7420e5eacd9
SHA1

6ea020bcc13f4641a37d46ab3f271fda45b9adbf
SHA256

7a0f6bba6402a2c611287df3c526f3f1f053532df60386d2e9fe59f3bb68ffca
SHA512

bbd4753f046fb5f0094e711a2ecb00cc93baf040d15eb18aa309f2f4f0e0399653690d573b61c004096a64a55d686520be20f8d04adb5f59f60bf6d535cd02a1
SSDEEP

12288:xIEWWzZdm6dmPzg4mBWm/vZZw63Sy4TVM:xIEDzZdm6dAzgzb0y9

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  7a0f6bba6402a2c611287df3c526f3f1f053532df60386d2e9fe59f3bb68ffca
- Size
  
  580KB
- MD5
  
  dce381e27ad5cd038abaa7420e5eacd9
- SHA1
  
  6ea020bcc13f4641a37d46ab3f271fda45b9adbf
- SHA256
  
  7a0f6bba6402a2c611287df3c526f3f1f053532df60386d2e9fe59f3bb68ffca
- SHA512
  
  bbd4753f046fb5f0094e711a2ecb00cc93baf040d15eb18aa309f2f4f0e0399653690d573b61c004096a64a55d686520be20f8d04adb5f59f60bf6d535cd02a1
- SSDEEP
  
  12288:xIEWWzZdm6dmPzg4mBWm/vZZw63Sy4TVM:xIEDzZdm6dAzgzb0y9
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2