12b420f573b850252fcd3a75875b799be62bb17224e6b37a6876ec9f7b758054 | Triage

Sharing

General

Target

12b420f573b850252fcd3a75875b799be62bb17224e6b37a6876ec9f7b758054
Size

68KB
Sample

221012-v4j2ssdfb2
MD5

652f331010d13a1ab99264c2a1976160
SHA1

d19e1a7f1673a52c82ef7c37a32f9f22b487aec4
SHA256

12b420f573b850252fcd3a75875b799be62bb17224e6b37a6876ec9f7b758054
SHA512

c14a8e24ca896f823ddc12477a9d33285c102827ddc56021d0c446898450d9768ece5879e859ca5ba2a6d7bd9f1e7af6d1af38f6fd5ec545ebdd742b03b02996
SSDEEP

768:WyNPnaxHDJ+n2KqU4S3u5m9dFMIq5zcCclF0cfNKDT+1XzRb+z:jNPnaxH1+2V7j0XSzUhFKDARSz

Score

6^/10

Malware Config

Targets

- Target
  
  12b420f573b850252fcd3a75875b799be62bb17224e6b37a6876ec9f7b758054
- Size
  
  68KB
- MD5
  
  652f331010d13a1ab99264c2a1976160
- SHA1
  
  d19e1a7f1673a52c82ef7c37a32f9f22b487aec4
- SHA256
  
  12b420f573b850252fcd3a75875b799be62bb17224e6b37a6876ec9f7b758054
- SHA512
  
  c14a8e24ca896f823ddc12477a9d33285c102827ddc56021d0c446898450d9768ece5879e859ca5ba2a6d7bd9f1e7af6d1af38f6fd5ec545ebdd742b03b02996
- SSDEEP
  
  768:WyNPnaxHDJ+n2KqU4S3u5m9dFMIq5zcCclF0cfNKDT+1XzRb+z:jNPnaxH1+2V7j0XSzUhFKDARSz
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2