91ada2172edb442b453522ac008e274894c8c416d77bc3dbbaae99a3909063c8 | Triage

Sharing

General

Target

91ada2172edb442b453522ac008e274894c8c416d77bc3dbbaae99a3909063c8
Size

5.1MB
Sample

240212-zb6sbadd67
MD5

33a22d1a45ad79c20194eaf0ec32c6ae
SHA1

65980a4e05873df5ed0c2e4f0c92ee18989ab49e
SHA256

91ada2172edb442b453522ac008e274894c8c416d77bc3dbbaae99a3909063c8
SHA512

7cf92970947d83519c8395ce6dfca12034412a4271246799f5470cebd6deb9fadebe98f41b8964e5af48c2591bab94d27fb568b22f6620a921c73d987523c11e
SSDEEP

98304:J7o9jzMHOhTMcwSCV7OMVS1Ol3DhGMEGgW/XwppMi:mNMuhQcwpOMFAGZji

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  91ada2172edb442b453522ac008e274894c8c416d77bc3dbbaae99a3909063c8
- Size
  
  5.1MB
- MD5
  
  33a22d1a45ad79c20194eaf0ec32c6ae
- SHA1
  
  65980a4e05873df5ed0c2e4f0c92ee18989ab49e
- SHA256
  
  91ada2172edb442b453522ac008e274894c8c416d77bc3dbbaae99a3909063c8
- SHA512
  
  7cf92970947d83519c8395ce6dfca12034412a4271246799f5470cebd6deb9fadebe98f41b8964e5af48c2591bab94d27fb568b22f6620a921c73d987523c11e
- SSDEEP
  
  98304:J7o9jzMHOhTMcwSCV7OMVS1Ol3DhGMEGgW/XwppMi:mNMuhQcwpOMFAGZji
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2