b24dca744a2855a43e7bbe08332f6a967661cc4ffd3efc8eea426f0a4e39a15d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b24dca744a2855a43e7bbe08332f6a967661cc4ffd3efc8eea426f0a4e39a15d
Size

1.2MB
Sample

221126-1fp6ssag5t
MD5

feeb55d2deb4fa1dcf01a67ae2e27b35
SHA1

537063b35acfc06dd3e050f681455df5f4728e10
SHA256

b24dca744a2855a43e7bbe08332f6a967661cc4ffd3efc8eea426f0a4e39a15d
SHA512

8892122ee8b1bdee0d0f4523302ffd1841f055c030640d731101d52f25c05f7d78eead96f5b5b5154c15fb44c878b3cabc07b8d75c4a802d829b113d0d0abc16
SSDEEP

24576:LCStj/R+pud1sQN6TgXxruXQNjj43/qq:tr0C/5XIANvM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b24dca744a2855a43e7bbe08332f6a967661cc4ffd3efc8eea426f0a4e39a15d
- Size
  
  1.2MB
- MD5
  
  feeb55d2deb4fa1dcf01a67ae2e27b35
- SHA1
  
  537063b35acfc06dd3e050f681455df5f4728e10
- SHA256
  
  b24dca744a2855a43e7bbe08332f6a967661cc4ffd3efc8eea426f0a4e39a15d
- SHA512
  
  8892122ee8b1bdee0d0f4523302ffd1841f055c030640d731101d52f25c05f7d78eead96f5b5b5154c15fb44c878b3cabc07b8d75c4a802d829b113d0d0abc16
- SSDEEP
  
  24576:LCStj/R+pud1sQN6TgXxruXQNjj43/qq:tr0C/5XIANvM
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2