a04eb333e01a113a91ea7661d4fe6994cbaf762764ddab05753e56bac0cff407 | Triage

Sharing

General

Target

2211e0f0cdd6d98dfc5e296b088e6331
Size

79KB
Sample

231225-qtxspacge7
MD5

2211e0f0cdd6d98dfc5e296b088e6331
SHA1

fe881af50f7c2e97a1f1c62acc35a3d39f484c4d
SHA256

a04eb333e01a113a91ea7661d4fe6994cbaf762764ddab05753e56bac0cff407
SHA512

c6cc237aeb186464375dda56b48fbe53cad1bd87688e979376f61e01a06001aca44a7725fc726b6cf1f720b3a00f8a8cbbe60ed74f88cf86ac9b80b1a6f8100b
SSDEEP

384:qGq8v5CZ9d7xz2ZfGlaKQ4ewqSPPiRa8HZTiKqv6i7VdV5vQ1tn:pRu/7flabDwxPL8HZejv6SVHZs

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  2211e0f0cdd6d98dfc5e296b088e6331
- Size
  
  79KB
- MD5
  
  2211e0f0cdd6d98dfc5e296b088e6331
- SHA1
  
  fe881af50f7c2e97a1f1c62acc35a3d39f484c4d
- SHA256
  
  a04eb333e01a113a91ea7661d4fe6994cbaf762764ddab05753e56bac0cff407
- SHA512
  
  c6cc237aeb186464375dda56b48fbe53cad1bd87688e979376f61e01a06001aca44a7725fc726b6cf1f720b3a00f8a8cbbe60ed74f88cf86ac9b80b1a6f8100b
- SSDEEP
  
  384:qGq8v5CZ9d7xz2ZfGlaKQ4ewqSPPiRa8HZTiKqv6i7VdV5vQ1tn:pRu/7flabDwxPL8HZejv6SVHZs
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2