b5f4288a983da9c9d807d1b8d97938d8c90fefdbcf9bdbd36ec204addcca25ae | Triage

Sharing

General

Target

b5f4288a983da9c9d807d1b8d97938d8c90fefdbcf9bdbd36ec204addcca25ae
Size

346KB
Sample

221127-sbekhafb37
MD5

dc847a4b732ec4e6b0286d2e3016f73d
SHA1

f49ef919f6163979c771c955b444c52bd41a7c87
SHA256

b5f4288a983da9c9d807d1b8d97938d8c90fefdbcf9bdbd36ec204addcca25ae
SHA512

7f1940bd7a0282dbbe20df6fa4a70510c29ddb477c29e052814273391ddce19291e37aced37d8bc426b27a842e65c99fb3ef4beeefd7d1b3fd68bc7b53e29e2b
SSDEEP

6144:SBdJ6PcM9Zv5LS+Mhhv5etkgVwRfUGHXPMfjHTHdLtxTHgy3h1Vd:m3dM9Zvty35hnR30jTHBdx1Vd

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  b5f4288a983da9c9d807d1b8d97938d8c90fefdbcf9bdbd36ec204addcca25ae
- Size
  
  346KB
- MD5
  
  dc847a4b732ec4e6b0286d2e3016f73d
- SHA1
  
  f49ef919f6163979c771c955b444c52bd41a7c87
- SHA256
  
  b5f4288a983da9c9d807d1b8d97938d8c90fefdbcf9bdbd36ec204addcca25ae
- SHA512
  
  7f1940bd7a0282dbbe20df6fa4a70510c29ddb477c29e052814273391ddce19291e37aced37d8bc426b27a842e65c99fb3ef4beeefd7d1b3fd68bc7b53e29e2b
- SSDEEP
  
  6144:SBdJ6PcM9Zv5LS+Mhhv5etkgVwRfUGHXPMfjHTHdLtxTHgy3h1Vd:m3dM9Zvty35hnR30jTHBdx1Vd
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2