991f55206b0f52916a60d0acacaaafcb98d6b5c43b762ebd8d618a207ce8a762 | Triage

Sharing

General

Target

991f55206b0f52916a60d0acacaaafcb98d6b5c43b762ebd8d618a207ce8a762
Size

60KB
Sample

221107-cfs1paegcj
MD5

0dc73a1dd6eef384a03ebc3365c2c680
SHA1

74d02ee8a06700ef1172d7e488ea19f10438f733
SHA256

991f55206b0f52916a60d0acacaaafcb98d6b5c43b762ebd8d618a207ce8a762
SHA512

765c3b43f92737164e00e10ea106aa551ecdd8a02d18ffa8d913d6cc04b6c185c2e9389a938df8ffc6aa69a44f6c71f2eea293173cdf8002b46f0044d7d28c18
SSDEEP

768:XSpv0R7HAdDXe5kYMHkAxKyXfBc5NOjrGeQUFPkl0Iv7zF:X8vZZYdV4Jc2jdxy7zF

Score

6^/10

Malware Config

Targets

- Target
  
  991f55206b0f52916a60d0acacaaafcb98d6b5c43b762ebd8d618a207ce8a762
- Size
  
  60KB
- MD5
  
  0dc73a1dd6eef384a03ebc3365c2c680
- SHA1
  
  74d02ee8a06700ef1172d7e488ea19f10438f733
- SHA256
  
  991f55206b0f52916a60d0acacaaafcb98d6b5c43b762ebd8d618a207ce8a762
- SHA512
  
  765c3b43f92737164e00e10ea106aa551ecdd8a02d18ffa8d913d6cc04b6c185c2e9389a938df8ffc6aa69a44f6c71f2eea293173cdf8002b46f0044d7d28c18
- SSDEEP
  
  768:XSpv0R7HAdDXe5kYMHkAxKyXfBc5NOjrGeQUFPkl0Iv7zF:X8vZZYdV4Jc2jdxy7zF
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2