f54c69186402b0b99acd5fb730939e6979fe97887423844e92a1e77583452bd3 | Triage

Sharing

General

Target

f54c69186402b0b99acd5fb730939e6979fe97887423844e92a1e77583452bd3
Size

1.1MB
Sample

221127-qcmamaab25
MD5

8bb2860480e18578e6c7cb7f68697d19
SHA1

992769b3d7f9a7718f6949f758824d3babcbf6cc
SHA256

f54c69186402b0b99acd5fb730939e6979fe97887423844e92a1e77583452bd3
SHA512

a1b47f3919c822914d97d654c08d13b059b43f5149f2dbab7b69ced696195b46dea4e51091c814502c8b10cd49ed0b23125951d736dbe72955af29381b067d50
SSDEEP

24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW

Score

7^/10

Malware Config

Targets

- Target
  
  f54c69186402b0b99acd5fb730939e6979fe97887423844e92a1e77583452bd3
- Size
  
  1.1MB
- MD5
  
  8bb2860480e18578e6c7cb7f68697d19
- SHA1
  
  992769b3d7f9a7718f6949f758824d3babcbf6cc
- SHA256
  
  f54c69186402b0b99acd5fb730939e6979fe97887423844e92a1e77583452bd3
- SHA512
  
  a1b47f3919c822914d97d654c08d13b059b43f5149f2dbab7b69ced696195b46dea4e51091c814502c8b10cd49ed0b23125951d736dbe72955af29381b067d50
- SSDEEP
  
  24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2