7c2709218ff4ea93e55ff0f86b496452f5219582fc7ea938a94bd633db5d9f79 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c2709218ff4ea93e55ff0f86b496452f5219582fc7ea938a94bd633db5d9f79
Size

32KB
Sample

221201-s5h5sagc71
MD5

34d544d8dbcffb39e880afb7a6afae40
SHA1

1561a7427842b8cc40f99d248e285154f5ea5be5
SHA256

7c2709218ff4ea93e55ff0f86b496452f5219582fc7ea938a94bd633db5d9f79
SHA512

54b8aba5c324788ec02720f4823dbb26892bcf05800c366d9ef423ff41c9c1b07051eef824ca00dbca5a7f83fc8796bd0c9db3a7457a39d38edd4c6c4cddabba
SSDEEP

384:f98xUHQXkcOFy4/q8zLeieerRatrznKPSrkI60jFX9NSwieRrVHOuGg:WwBBqopTUrzIXotNSuHGg

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  7c2709218ff4ea93e55ff0f86b496452f5219582fc7ea938a94bd633db5d9f79
- Size
  
  32KB
- MD5
  
  34d544d8dbcffb39e880afb7a6afae40
- SHA1
  
  1561a7427842b8cc40f99d248e285154f5ea5be5
- SHA256
  
  7c2709218ff4ea93e55ff0f86b496452f5219582fc7ea938a94bd633db5d9f79
- SHA512
  
  54b8aba5c324788ec02720f4823dbb26892bcf05800c366d9ef423ff41c9c1b07051eef824ca00dbca5a7f83fc8796bd0c9db3a7457a39d38edd4c6c4cddabba
- SSDEEP
  
  384:f98xUHQXkcOFy4/q8zLeieerRatrznKPSrkI60jFX9NSwieRrVHOuGg:WwBBqopTUrzIXotNSuHGg
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2