72d50bde4a29acf131006dbaabc50eea93af76745f1f1ac68b3ed9479b7c36a6 | Triage

Sharing

General

Target

72d50bde4a29acf131006dbaabc50eea93af76745f1f1ac68b3ed9479b7c36a6
Size

1.1MB
Sample

221126-2b647ahh59
MD5

7cc923cc70cca7fbcabb4897c03658bb
SHA1

dc636d7a169d33cb52a12c877f3ea7342c5f068f
SHA256

72d50bde4a29acf131006dbaabc50eea93af76745f1f1ac68b3ed9479b7c36a6
SHA512

bb5c66f3925ef038907a6d64065b6d49a90a17bfae4358c0023152bf69ee363554018e3a99a82bac6d7da6d3f47b3f45af0c3246369b8733a163a2e708395aa9
SSDEEP

24576:z8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:zWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  72d50bde4a29acf131006dbaabc50eea93af76745f1f1ac68b3ed9479b7c36a6
- Size
  
  1.1MB
- MD5
  
  7cc923cc70cca7fbcabb4897c03658bb
- SHA1
  
  dc636d7a169d33cb52a12c877f3ea7342c5f068f
- SHA256
  
  72d50bde4a29acf131006dbaabc50eea93af76745f1f1ac68b3ed9479b7c36a6
- SHA512
  
  bb5c66f3925ef038907a6d64065b6d49a90a17bfae4358c0023152bf69ee363554018e3a99a82bac6d7da6d3f47b3f45af0c3246369b8733a163a2e708395aa9
- SSDEEP
  
  24576:z8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:zWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2