1ff57553142847805f198624c05a006aaa792336cbd6ad2c7db9b78a8bc93bc3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ff57553142847805f198624c05a006aaa792336cbd6ad2c7db9b78a8bc93bc3
Size

1.1MB
Sample

221126-3p6w1sgh9x
MD5

3ecb27f23f74318b3c2e128cc781051e
SHA1

41192b9c40dab95329fda32d56e18f2203a10843
SHA256

1ff57553142847805f198624c05a006aaa792336cbd6ad2c7db9b78a8bc93bc3
SHA512

a48fbe3832572edc864ef858cad5a600268673cab67e795a86e6a7b0601e25e51b279fb743dfa4dac19f29da171b878638b5a9d81f25334a761fc7ef124c90b6
SSDEEP

24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8prj:TWtbKELB6rhW8hj

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1ff57553142847805f198624c05a006aaa792336cbd6ad2c7db9b78a8bc93bc3
- Size
  
  1.1MB
- MD5
  
  3ecb27f23f74318b3c2e128cc781051e
- SHA1
  
  41192b9c40dab95329fda32d56e18f2203a10843
- SHA256
  
  1ff57553142847805f198624c05a006aaa792336cbd6ad2c7db9b78a8bc93bc3
- SHA512
  
  a48fbe3832572edc864ef858cad5a600268673cab67e795a86e6a7b0601e25e51b279fb743dfa4dac19f29da171b878638b5a9d81f25334a761fc7ef124c90b6
- SSDEEP
  
  24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8prj:TWtbKELB6rhW8hj
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2