e01d8b92837ba3079923a6ae2d826b5ddf6a14639bc35bff6a05f65d50e145ea | Triage

Sharing

General

Target

e01d8b92837ba3079923a6ae2d826b5ddf6a14639bc35bff6a05f65d50e145ea
Size

156KB
Sample

221204-q9ypxsab3v
MD5

92b253f2e92a880ba5532ad89a36b2ba
SHA1

788d7749b2cbcd3e592890411bb6f3e27e75071a
SHA256

e01d8b92837ba3079923a6ae2d826b5ddf6a14639bc35bff6a05f65d50e145ea
SHA512

e389874d740e16fbb0aeca6b1b483f72a38ee460f95d13cb0e951179c97901ddad27977321c33f61e01c3a61a8475b2a7ebc5e6faf8493d91283158a35e1ea9f
SSDEEP

3072:zePoZO+WfapEDGhSdSUxxifeZuZCxQNsUq5rbMBTmnaW+vihLxhBL:zeDnDGhSdS4FJxGsp5rQl8+qhLN

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  e01d8b92837ba3079923a6ae2d826b5ddf6a14639bc35bff6a05f65d50e145ea
- Size
  
  156KB
- MD5
  
  92b253f2e92a880ba5532ad89a36b2ba
- SHA1
  
  788d7749b2cbcd3e592890411bb6f3e27e75071a
- SHA256
  
  e01d8b92837ba3079923a6ae2d826b5ddf6a14639bc35bff6a05f65d50e145ea
- SHA512
  
  e389874d740e16fbb0aeca6b1b483f72a38ee460f95d13cb0e951179c97901ddad27977321c33f61e01c3a61a8475b2a7ebc5e6faf8493d91283158a35e1ea9f
- SSDEEP
  
  3072:zePoZO+WfapEDGhSdSUxxifeZuZCxQNsUq5rbMBTmnaW+vihLxhBL:zeDnDGhSdS4FJxGsp5rQl8+qhLN
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2