d534f488ce9162bbeb2adfdecd377a652e83cbe2d2f773aac79a9c7f3f8dae11 | Triage

Sharing

General

Target

d534f488ce9162bbeb2adfdecd377a652e83cbe2d2f773aac79a9c7f3f8dae11
Size

76KB
Sample

221002-ly6h6sbfgl
MD5

6f06f7f8663f8bdcc74349d84eb2ed91
SHA1

8dd7539da1a0c0199a0f115163f8844f7b49f22e
SHA256

d534f488ce9162bbeb2adfdecd377a652e83cbe2d2f773aac79a9c7f3f8dae11
SHA512

46ae702071699c28e338790d63cd5c7136b12f8fa4b675d32789e5cf9e97760204c6426a22ba3d0e5d8a49adee2e460febb262e7c0f961fa8a86eed766d26356
SSDEEP

768:6NZM+p8T+qz23uLA5Xh3pFHBc4cLZBkuxy1nEEEbMeUEv3XHPKom6Y1v:6NZM+p8T/yj5XhL4nkuGoMervnvM66

Score

6^/10

Malware Config

Targets

- Target
  
  d534f488ce9162bbeb2adfdecd377a652e83cbe2d2f773aac79a9c7f3f8dae11
- Size
  
  76KB
- MD5
  
  6f06f7f8663f8bdcc74349d84eb2ed91
- SHA1
  
  8dd7539da1a0c0199a0f115163f8844f7b49f22e
- SHA256
  
  d534f488ce9162bbeb2adfdecd377a652e83cbe2d2f773aac79a9c7f3f8dae11
- SHA512
  
  46ae702071699c28e338790d63cd5c7136b12f8fa4b675d32789e5cf9e97760204c6426a22ba3d0e5d8a49adee2e460febb262e7c0f961fa8a86eed766d26356
- SSDEEP
  
  768:6NZM+p8T+qz23uLA5Xh3pFHBc4cLZBkuxy1nEEEbMeUEv3XHPKom6Y1v:6NZM+p8T/yj5XhL4nkuGoMervnvM66
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2