b1e8e7c7607d78ac86cc6927a7d5a6bef383a76ba477a7b7fcd072ffa1935257 | Triage

Sharing

General

Target

b1e8e7c7607d78ac86cc6927a7d5a6bef383a76ba477a7b7fcd072ffa1935257
Size

237KB
Sample

221029-jbkbbaffe8
MD5

9078b0fcc9d7fe3d473ca02f32e3936a
SHA1

be63de581feb0ac9d6bacdf059ed87967ea9cb2a
SHA256

b1e8e7c7607d78ac86cc6927a7d5a6bef383a76ba477a7b7fcd072ffa1935257
SHA512

661fc840ad411a029e46f1ef3242a052e106519ad0aa8a8f0354d15829260bf7d561b221329d3494faadb2b82fe11d7fd88a0bccc11425d1e6cd076d4977eda4
SSDEEP

6144:HWstanl+HAmxbEJcf3uqVKtjFuep+UZrUkKzFF:HWlcHlAJ63u/uep+UZr5KzFF

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  b1e8e7c7607d78ac86cc6927a7d5a6bef383a76ba477a7b7fcd072ffa1935257
- Size
  
  237KB
- MD5
  
  9078b0fcc9d7fe3d473ca02f32e3936a
- SHA1
  
  be63de581feb0ac9d6bacdf059ed87967ea9cb2a
- SHA256
  
  b1e8e7c7607d78ac86cc6927a7d5a6bef383a76ba477a7b7fcd072ffa1935257
- SHA512
  
  661fc840ad411a029e46f1ef3242a052e106519ad0aa8a8f0354d15829260bf7d561b221329d3494faadb2b82fe11d7fd88a0bccc11425d1e6cd076d4977eda4
- SSDEEP
  
  6144:HWstanl+HAmxbEJcf3uqVKtjFuep+UZrUkKzFF:HWlcHlAJ63u/uep+UZr5KzFF
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2