3525910b9e78913fae725610a66459b98b131d2e7b60a399a159a60771482b8b | Triage

Sharing

General

Target

3525910b9e78913fae725610a66459b98b131d2e7b60a399a159a60771482b8b
Size

36KB
Sample

221124-aekxkseb92
MD5

16d11f4388896acd15586c926753a3d6
SHA1

f92ebf500902673dcf00367e7401da1bcffefd84
SHA256

3525910b9e78913fae725610a66459b98b131d2e7b60a399a159a60771482b8b
SHA512

8948015894940f058aa80422380bf39e19c341f5ee277c54536660f6cbbcab821568d34463cb1abd488ea2147c0a55869b273ec9f3b53ed5af94daf2ef0ea3d7
SSDEEP

768:9VVoiC+4JDWYA2bwxCVKsN5fAQZV4FJRQNgPl2swrv:90iKWYA2bwxC8kfAYYJGNgtQ

Score

6^/10

Malware Config

Targets

- Target
  
  3525910b9e78913fae725610a66459b98b131d2e7b60a399a159a60771482b8b
- Size
  
  36KB
- MD5
  
  16d11f4388896acd15586c926753a3d6
- SHA1
  
  f92ebf500902673dcf00367e7401da1bcffefd84
- SHA256
  
  3525910b9e78913fae725610a66459b98b131d2e7b60a399a159a60771482b8b
- SHA512
  
  8948015894940f058aa80422380bf39e19c341f5ee277c54536660f6cbbcab821568d34463cb1abd488ea2147c0a55869b273ec9f3b53ed5af94daf2ef0ea3d7
- SSDEEP
  
  768:9VVoiC+4JDWYA2bwxCVKsN5fAQZV4FJRQNgPl2swrv:90iKWYA2bwxC8kfAYYJGNgtQ
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2