6ca0e23a97d7660cf2933d2f1c50b6df1199370534d3786e5ea7d220adc10976 | Triage

Sharing

General

Target

6ca0e23a97d7660cf2933d2f1c50b6df1199370534d3786e5ea7d220adc10976
Size

1.0MB
Sample

221127-d1cpwafd34
MD5

2cac9028ca6bcc94ce0136e6fefa6ec4
SHA1

ddf3b66760057f5a3020d0760e27909640444e88
SHA256

6ca0e23a97d7660cf2933d2f1c50b6df1199370534d3786e5ea7d220adc10976
SHA512

cfd6589021dac421107870df42dbf8dfad08cc7ab5b61cd3d452af1eacbcbcced8a36efa188f9a072be195367fa2a65cd3d0e3a690b616950a1b9e79646a65a0
SSDEEP

24576:CO9NENGtIfz4RItOQDlfhG83DAIUnGkJp1GBU:Cg+NBOQ9c83D271G6

Score

7^/10

Malware Config

Targets

- Target
  
  6ca0e23a97d7660cf2933d2f1c50b6df1199370534d3786e5ea7d220adc10976
- Size
  
  1.0MB
- MD5
  
  2cac9028ca6bcc94ce0136e6fefa6ec4
- SHA1
  
  ddf3b66760057f5a3020d0760e27909640444e88
- SHA256
  
  6ca0e23a97d7660cf2933d2f1c50b6df1199370534d3786e5ea7d220adc10976
- SHA512
  
  cfd6589021dac421107870df42dbf8dfad08cc7ab5b61cd3d452af1eacbcbcced8a36efa188f9a072be195367fa2a65cd3d0e3a690b616950a1b9e79646a65a0
- SSDEEP
  
  24576:CO9NENGtIfz4RItOQDlfhG83DAIUnGkJp1GBU:Cg+NBOQ9c83D271G6
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2