158306b19023ddda218930fdbfe96a9dfe0810658f1339fd7b94311e2b8329f6 | Triage

Sharing

General

Target

4c809a81f41a999d93ba3fbbb3d34ee7.bin
Size

74KB
Sample

240110-b81qkacgc5
MD5

4c809a81f41a999d93ba3fbbb3d34ee7
SHA1

25e4df81d5d40350ec82c17b6f4a978f2d2fac12
SHA256

158306b19023ddda218930fdbfe96a9dfe0810658f1339fd7b94311e2b8329f6
SHA512

854c769c20f9ac90163469e8d43d28d50a4911836d9aaef5d2605fdc0b9cecd68f533139b9987e50a3d010fde8894ea2dca1b3aaf016e9e6af70586031adde57
SSDEEP

1536:at76rCkt1EmadV6cJTbTAr8uTXnYYlFAgYy7z3InCV+ilr2HMT5Gs8xm/R:3ZEJACk8uTXnYmLYy7zY+Ll0/IR

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  4c809a81f41a999d93ba3fbbb3d34ee7.bin
- Size
  
  74KB
- MD5
  
  4c809a81f41a999d93ba3fbbb3d34ee7
- SHA1
  
  25e4df81d5d40350ec82c17b6f4a978f2d2fac12
- SHA256
  
  158306b19023ddda218930fdbfe96a9dfe0810658f1339fd7b94311e2b8329f6
- SHA512
  
  854c769c20f9ac90163469e8d43d28d50a4911836d9aaef5d2605fdc0b9cecd68f533139b9987e50a3d010fde8894ea2dca1b3aaf016e9e6af70586031adde57
- SSDEEP
  
  1536:at76rCkt1EmadV6cJTbTAr8uTXnYYlFAgYy7z3InCV+ilr2HMT5Gs8xm/R:3ZEJACk8uTXnYmLYy7zY+Ll0/IR
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2