a232262fe1ce5701dbd0fd77a443c68328b1f67ee9b9dfa573302763fdb5637b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a232262fe1ce5701dbd0fd77a443c68328b1f67ee9b9dfa573302763fdb5637b
Size

116KB
Sample

221003-ndj6jsdde6
MD5

6790380f9fef634e7fdcffe83e17d2c0
SHA1

ece59597556ccf19ed5fb7649f665dbee7bcf06a
SHA256

a232262fe1ce5701dbd0fd77a443c68328b1f67ee9b9dfa573302763fdb5637b
SHA512

e6a77d2eafd6b4d7b91aafec20dad047b49eb21ffd417e95a97456fbda286e8f2c537e34db54583a6ab4ab8608e690f084f6599fc2f67ff8d1706b3a2bd0c215
SSDEEP

1536:G5RHsm+7KaG2Ood4gJqIN7ntPbPLLPNH1Ie+MmC+MSNcIc2NCoFl2:Vm8t7qIznP91Is1+MSzc2NNFA

Score

6^/10

Malware Config

Targets

- Target
  
  a232262fe1ce5701dbd0fd77a443c68328b1f67ee9b9dfa573302763fdb5637b
- Size
  
  116KB
- MD5
  
  6790380f9fef634e7fdcffe83e17d2c0
- SHA1
  
  ece59597556ccf19ed5fb7649f665dbee7bcf06a
- SHA256
  
  a232262fe1ce5701dbd0fd77a443c68328b1f67ee9b9dfa573302763fdb5637b
- SHA512
  
  e6a77d2eafd6b4d7b91aafec20dad047b49eb21ffd417e95a97456fbda286e8f2c537e34db54583a6ab4ab8608e690f084f6599fc2f67ff8d1706b3a2bd0c215
- SSDEEP
  
  1536:G5RHsm+7KaG2Ood4gJqIN7ntPbPLLPNH1Ie+MmC+MSNcIc2NCoFl2:Vm8t7qIznP91Is1+MSzc2NNFA
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2