99145745d04cd79bb30b565391fb9cd5a8bd678dfb291ba8663781c821a83c92 | Triage

Sharing

General

Target

99145745d04cd79bb30b565391fb9cd5a8bd678dfb291ba8663781c821a83c92
Size

6.0MB
Sample

221205-vr7x4adb6v
MD5

9bb523bdcebcf0c6e6cb9553e838229b
SHA1

6e1c4b8c7fdb7ef242196b9b8685dbfa296e614b
SHA256

99145745d04cd79bb30b565391fb9cd5a8bd678dfb291ba8663781c821a83c92
SHA512

d00ffc1f403c55a89f327b2cf761e39576f33eabe1921e08f8797f8ae107af29e62aa7c03dcae09bb5a777b7545054934f728e40885c3e589f4b274b80c7d030
SSDEEP

98304:q3uxXKIEZcX3ecaTvhT4c0iC9vy6KGiZIb2J8UGK7j6fMQrxQFePokF18yX:qZtuZaTvi99qGiZI4H6f5rxFoK1BX

Score

5^/10

Malware Config

Targets

- Target
  
  99145745d04cd79bb30b565391fb9cd5a8bd678dfb291ba8663781c821a83c92
- Size
  
  6.0MB
- MD5
  
  9bb523bdcebcf0c6e6cb9553e838229b
- SHA1
  
  6e1c4b8c7fdb7ef242196b9b8685dbfa296e614b
- SHA256
  
  99145745d04cd79bb30b565391fb9cd5a8bd678dfb291ba8663781c821a83c92
- SHA512
  
  d00ffc1f403c55a89f327b2cf761e39576f33eabe1921e08f8797f8ae107af29e62aa7c03dcae09bb5a777b7545054934f728e40885c3e589f4b274b80c7d030
- SSDEEP
  
  98304:q3uxXKIEZcX3ecaTvhT4c0iC9vy6KGiZIb2J8UGK7j6fMQrxQFePokF18yX:qZtuZaTvi99qGiZI4H6f5rxFoK1BX
Score

5^/10
- Drops file in System32 directory
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2