d5d052f18d5e15e064e9100a640a566543ea0f05b7a6a355fe14fc553a3975f8 | Triage

Sharing

General

Target

d5d052f18d5e15e064e9100a640a566543ea0f05b7a6a355fe14fc553a3975f8
Size

1.1MB
Sample

221126-t5f6vsca7w
MD5

d99bd98cf5ee09abfd955f8dd681b033
SHA1

75e3fe376d54e5805d31d8f50fa0b1250ef7eb7a
SHA256

d5d052f18d5e15e064e9100a640a566543ea0f05b7a6a355fe14fc553a3975f8
SHA512

8469253b8a1d59c4862237860adbc05c388e8b5994f82b3e3b765f420d40b8fe2aacd182445d55c50ca34865d379310371c142094da233216f7ad273c2463ad9
SSDEEP

24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d5d052f18d5e15e064e9100a640a566543ea0f05b7a6a355fe14fc553a3975f8
- Size
  
  1.1MB
- MD5
  
  d99bd98cf5ee09abfd955f8dd681b033
- SHA1
  
  75e3fe376d54e5805d31d8f50fa0b1250ef7eb7a
- SHA256
  
  d5d052f18d5e15e064e9100a640a566543ea0f05b7a6a355fe14fc553a3975f8
- SHA512
  
  8469253b8a1d59c4862237860adbc05c388e8b5994f82b3e3b765f420d40b8fe2aacd182445d55c50ca34865d379310371c142094da233216f7ad273c2463ad9
- SSDEEP
  
  24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2