5b26a1c74c615bfdaaf6f786536c158f80bcb31c6254b1ff439239dc1b17d5be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b26a1c74c615bfdaaf6f786536c158f80bcb31c6254b1ff439239dc1b17d5be
Size

488KB
Sample

221014-m6144acdg9
MD5

755193233cdd15726281f4f6c5729690
SHA1

18762f5f01e33175bf34c1cdf423665018f07ab2
SHA256

5b26a1c74c615bfdaaf6f786536c158f80bcb31c6254b1ff439239dc1b17d5be
SHA512

f11f91cea571b1b957c0d5e3db09cbf4def0b544be2924365eb5af66a3f649a02d08bd2c7fff47ce9275e7f3719bd67e0a09ca029c24af57c8e4e5337d5f2f9c
SSDEEP

12288:wlHIeD3h/N1jpZNi9R+swevu2XVgwZCQUA:9ANtN8Xl

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  5b26a1c74c615bfdaaf6f786536c158f80bcb31c6254b1ff439239dc1b17d5be
- Size
  
  488KB
- MD5
  
  755193233cdd15726281f4f6c5729690
- SHA1
  
  18762f5f01e33175bf34c1cdf423665018f07ab2
- SHA256
  
  5b26a1c74c615bfdaaf6f786536c158f80bcb31c6254b1ff439239dc1b17d5be
- SHA512
  
  f11f91cea571b1b957c0d5e3db09cbf4def0b544be2924365eb5af66a3f649a02d08bd2c7fff47ce9275e7f3719bd67e0a09ca029c24af57c8e4e5337d5f2f9c
- SSDEEP
  
  12288:wlHIeD3h/N1jpZNi9R+swevu2XVgwZCQUA:9ANtN8Xl
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2