e1757b552a1165ac790a80502f6d64472616479bd491b65119bd27b1bf769a40 | Triage

Sharing

General

Target

e1757b552a1165ac790a80502f6d64472616479bd491b65119bd27b1bf769a40
Size

1.1MB
Sample

221127-j555waca24
MD5

87cda76e4c79dfcd0d3ed386308975d1
SHA1

bafc22ed62927a2d3356304189e8ebf1ba67e7b0
SHA256

e1757b552a1165ac790a80502f6d64472616479bd491b65119bd27b1bf769a40
SHA512

2f813c391242cf8e0aecfa4f90ca26d4f11ce132c359f5b181d00537708b85926d1551e0438812b92ccad87450a413ca403d31910180c22923a953643bae5174
SSDEEP

24576:EsRXlDBAsLYAbFDz/levsYYEirnDNR37dzBsZcifA3ggsngqb9IrvY:EsR1FAeLDztOarnhOZcikgrngqbe0

Score

7^/10

Malware Config

Targets

- Target
  
  e1757b552a1165ac790a80502f6d64472616479bd491b65119bd27b1bf769a40
- Size
  
  1.1MB
- MD5
  
  87cda76e4c79dfcd0d3ed386308975d1
- SHA1
  
  bafc22ed62927a2d3356304189e8ebf1ba67e7b0
- SHA256
  
  e1757b552a1165ac790a80502f6d64472616479bd491b65119bd27b1bf769a40
- SHA512
  
  2f813c391242cf8e0aecfa4f90ca26d4f11ce132c359f5b181d00537708b85926d1551e0438812b92ccad87450a413ca403d31910180c22923a953643bae5174
- SSDEEP
  
  24576:EsRXlDBAsLYAbFDz/levsYYEirnDNR37dzBsZcifA3ggsngqb9IrvY:EsR1FAeLDztOarnhOZcikgrngqbe0
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2