848e6c0475cc6a696308815202940c8b5639c0e05dadd31f8c6d8cf14253515e | Triage

Sharing

General

Target

848e6c0475cc6a696308815202940c8b5639c0e05dadd31f8c6d8cf14253515e
Size

1.1MB
Sample

221127-apq7cafe25
MD5

de1bf8ce09cb48fd5ce6b17f5f02662c
SHA1

5227d177069ff3f320ae3c298c2673cf9cba5592
SHA256

848e6c0475cc6a696308815202940c8b5639c0e05dadd31f8c6d8cf14253515e
SHA512

7aea5a3e0deb6c3ac64485607176546cfa7a9136bb43478d56bd9966e3ff96a157011143269409b7dbf53a712111f8fb4c3d335133f465592ca81d3fd99c9d11
SSDEEP

24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  848e6c0475cc6a696308815202940c8b5639c0e05dadd31f8c6d8cf14253515e
- Size
  
  1.1MB
- MD5
  
  de1bf8ce09cb48fd5ce6b17f5f02662c
- SHA1
  
  5227d177069ff3f320ae3c298c2673cf9cba5592
- SHA256
  
  848e6c0475cc6a696308815202940c8b5639c0e05dadd31f8c6d8cf14253515e
- SHA512
  
  7aea5a3e0deb6c3ac64485607176546cfa7a9136bb43478d56bd9966e3ff96a157011143269409b7dbf53a712111f8fb4c3d335133f465592ca81d3fd99c9d11
- SSDEEP
  
  24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2