f1aa33384f7b16c3b87be0f1ccf1858a90c852e5070c785f21ef6181415a2710 | Triage

Sharing

General

Target

f1aa33384f7b16c3b87be0f1ccf1858a90c852e5070c785f21ef6181415a2710
Size

1.0MB
Sample

221127-qc5rzadg4y
MD5

fc2523a89ebf699d3b04860c77e90d22
SHA1

04d38221599aaba516fb3299dbea02b5bcd3ff73
SHA256

f1aa33384f7b16c3b87be0f1ccf1858a90c852e5070c785f21ef6181415a2710
SHA512

9ecd6b260bd767b5b3be75a79ec59e4cd5a8231a40216ca5b8bcf8b34232955353ec6e6fc507ce49c1a02befaf07e31fcc80fe900b865a948d3195b0d6058c51
SSDEEP

24576:A0BfZ15Scs4mUj79qPiqn7yauT/asgd0tp8A:A0guUuT/asgU

Score

7^/10

Malware Config

Targets

- Target
  
  f1aa33384f7b16c3b87be0f1ccf1858a90c852e5070c785f21ef6181415a2710
- Size
  
  1.0MB
- MD5
  
  fc2523a89ebf699d3b04860c77e90d22
- SHA1
  
  04d38221599aaba516fb3299dbea02b5bcd3ff73
- SHA256
  
  f1aa33384f7b16c3b87be0f1ccf1858a90c852e5070c785f21ef6181415a2710
- SHA512
  
  9ecd6b260bd767b5b3be75a79ec59e4cd5a8231a40216ca5b8bcf8b34232955353ec6e6fc507ce49c1a02befaf07e31fcc80fe900b865a948d3195b0d6058c51
- SSDEEP
  
  24576:A0BfZ15Scs4mUj79qPiqn7yauT/asgd0tp8A:A0guUuT/asgU
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2