93ad313374f7b6cab1fcc2e3d069a6932abd5b70aa5313da8d3c912983b66f7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93ad313374f7b6cab1fcc2e3d069a6932abd5b70aa5313da8d3c912983b66f7a
Size

962KB
Sample

231127-n5by9agc94
MD5

46c0e34ddfde46cdcf8bde9398c4d958
SHA1

514acfe962e76ec4a6cad479e36627a09446f3b1
SHA256

93ad313374f7b6cab1fcc2e3d069a6932abd5b70aa5313da8d3c912983b66f7a
SHA512

c6790cf643ef5e94fb798134670f0d58f4effb89b51ced50e347f122f09e0102976a940358754ad9456c62796024d167345cb5f5e300c415f2b15c41ec48ad36
SSDEEP

24576:0SOcQjuwnVXY+7FgkH5uHTEsHEiwt3goxp1CQ:PUnFYE6k0hkPZbCQ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  93ad313374f7b6cab1fcc2e3d069a6932abd5b70aa5313da8d3c912983b66f7a
- Size
  
  962KB
- MD5
  
  46c0e34ddfde46cdcf8bde9398c4d958
- SHA1
  
  514acfe962e76ec4a6cad479e36627a09446f3b1
- SHA256
  
  93ad313374f7b6cab1fcc2e3d069a6932abd5b70aa5313da8d3c912983b66f7a
- SHA512
  
  c6790cf643ef5e94fb798134670f0d58f4effb89b51ced50e347f122f09e0102976a940358754ad9456c62796024d167345cb5f5e300c415f2b15c41ec48ad36
- SSDEEP
  
  24576:0SOcQjuwnVXY+7FgkH5uHTEsHEiwt3goxp1CQ:PUnFYE6k0hkPZbCQ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1