a606826854fb9664f6b59b404964684816c455eb5daf6c2c0a0e5d64fa3c0981 | Triage

Sharing

General

Target

a606826854fb9664f6b59b404964684816c455eb5daf6c2c0a0e5d64fa3c0981
Size

1.0MB
Sample

221126-vg2y4aaa36
MD5

50d5f9630cbb1344ce5da8074fd20a42
SHA1

8d22038f0593e5a4142c54c897bb09d6ec99e54c
SHA256

a606826854fb9664f6b59b404964684816c455eb5daf6c2c0a0e5d64fa3c0981
SHA512

8d7b988dcc2bbc65d282aa08275fd4bbb3ccbf27fdd677839707410a9579948dd1ba6d02165c535aecd41a94537bc30c07fd20c8387df14edf8a4c9b28ccf684
SSDEEP

24576:5QP1WIt/PcyQzktVF72ofLFCQUeXkS96WJW0f:a9WiHcWFdFCBk9vWG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a606826854fb9664f6b59b404964684816c455eb5daf6c2c0a0e5d64fa3c0981
- Size
  
  1.0MB
- MD5
  
  50d5f9630cbb1344ce5da8074fd20a42
- SHA1
  
  8d22038f0593e5a4142c54c897bb09d6ec99e54c
- SHA256
  
  a606826854fb9664f6b59b404964684816c455eb5daf6c2c0a0e5d64fa3c0981
- SHA512
  
  8d7b988dcc2bbc65d282aa08275fd4bbb3ccbf27fdd677839707410a9579948dd1ba6d02165c535aecd41a94537bc30c07fd20c8387df14edf8a4c9b28ccf684
- SSDEEP
  
  24576:5QP1WIt/PcyQzktVF72ofLFCQUeXkS96WJW0f:a9WiHcWFdFCBk9vWG
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2