8556b49dac31a7f607df1478b60dd85644b4bac22803004872842f9f9440a115 | Triage

Sharing

General

Target

8556b49dac31a7f607df1478b60dd85644b4bac22803004872842f9f9440a115
Size

1.1MB
Sample

221126-3qhktaha3x
MD5

60b3968c9f1b8e2e5cab88b07d9dda72
SHA1

7efa90669a1a7895f008b014f09deebd4a87d48f
SHA256

8556b49dac31a7f607df1478b60dd85644b4bac22803004872842f9f9440a115
SHA512

3cb4ddf8423862815fca79c39892737563da8989f6a4820c3854e1e400e062c46aa6b4951f6b77afe95702a68fb028bd22f7f729fc2dd3a55971bd2a9ff3e805
SSDEEP

24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:TWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8556b49dac31a7f607df1478b60dd85644b4bac22803004872842f9f9440a115
- Size
  
  1.1MB
- MD5
  
  60b3968c9f1b8e2e5cab88b07d9dda72
- SHA1
  
  7efa90669a1a7895f008b014f09deebd4a87d48f
- SHA256
  
  8556b49dac31a7f607df1478b60dd85644b4bac22803004872842f9f9440a115
- SHA512
  
  3cb4ddf8423862815fca79c39892737563da8989f6a4820c3854e1e400e062c46aa6b4951f6b77afe95702a68fb028bd22f7f729fc2dd3a55971bd2a9ff3e805
- SSDEEP
  
  24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:TWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2