07af6a7d34517bec36e79b66c2abe4ff127b94d6ec4d3d76d6ffb36d5966f0da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07af6a7d34517bec36e79b66c2abe4ff127b94d6ec4d3d76d6ffb36d5966f0da
Size

35KB
Sample

221020-l8lazshbe2
MD5

9608deccb86eebae71386e7cfa92c1b0
SHA1

a1cd1d9e039780c4e4e0bc8a2d992dda96f48c0c
SHA256

07af6a7d34517bec36e79b66c2abe4ff127b94d6ec4d3d76d6ffb36d5966f0da
SHA512

0ff6a31db63a46c5ce426403018e0d5a3a0c2409fc6def689e8bf9f1f3f0730a44b128842697e9aed91c3a49aff57923e7e50f27c171cb6d7786d751ce0261e0
SSDEEP

768:DMAMMjRm3A5o1smCf5/9lLx0CbGpdK/NSG/c/6SmUhT3D:DM2AA56+5/b6KGK/Nzo6SmU1

Score

6^/10

Malware Config

Targets

- Target
  
  07af6a7d34517bec36e79b66c2abe4ff127b94d6ec4d3d76d6ffb36d5966f0da
- Size
  
  35KB
- MD5
  
  9608deccb86eebae71386e7cfa92c1b0
- SHA1
  
  a1cd1d9e039780c4e4e0bc8a2d992dda96f48c0c
- SHA256
  
  07af6a7d34517bec36e79b66c2abe4ff127b94d6ec4d3d76d6ffb36d5966f0da
- SHA512
  
  0ff6a31db63a46c5ce426403018e0d5a3a0c2409fc6def689e8bf9f1f3f0730a44b128842697e9aed91c3a49aff57923e7e50f27c171cb6d7786d751ce0261e0
- SSDEEP
  
  768:DMAMMjRm3A5o1smCf5/9lLx0CbGpdK/NSG/c/6SmUhT3D:DM2AA56+5/b6KGK/Nzo6SmU1
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2