7244eedde1d46537d0138ffeae508d5d6325189842c5142ebf91d9d4df362a19 | Triage

Sharing

General

Target

7244eedde1d46537d0138ffeae508d5d6325189842c5142ebf91d9d4df362a19
Size

828KB
Sample

221126-ep53qaec7y
MD5

909f0b3b93c941a3c209a42e17228242
SHA1

1b02c158c343f104a3b27619b451666177212983
SHA256

7244eedde1d46537d0138ffeae508d5d6325189842c5142ebf91d9d4df362a19
SHA512

394ee640747aa63b8db60b4c06dda5fc86c399d4f9462704a7c43af2a76f3ba730e4c4c962d007283e86175ceb3e03023d46929a1896f91965efcf4a7fcdd083
SSDEEP

24576:PDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPt:LFhwFzPBYb02y4SA5Mk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7244eedde1d46537d0138ffeae508d5d6325189842c5142ebf91d9d4df362a19
- Size
  
  828KB
- MD5
  
  909f0b3b93c941a3c209a42e17228242
- SHA1
  
  1b02c158c343f104a3b27619b451666177212983
- SHA256
  
  7244eedde1d46537d0138ffeae508d5d6325189842c5142ebf91d9d4df362a19
- SHA512
  
  394ee640747aa63b8db60b4c06dda5fc86c399d4f9462704a7c43af2a76f3ba730e4c4c962d007283e86175ceb3e03023d46929a1896f91965efcf4a7fcdd083
- SSDEEP
  
  24576:PDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPt:LFhwFzPBYb02y4SA5Mk
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2