cd4626bdc02e3fdc1a66f33f95c401f8f3528b972d28242e3315106b9d829c28 | Triage

Sharing

General

Target

cd4626bdc02e3fdc1a66f33f95c401f8f3528b972d28242e3315106b9d829c28
Size

1.1MB
Sample

221127-qlfjfaec7w
MD5

742d500db0d7c943ee44af38ba45231e
SHA1

9ef555f8b21e9b5bea7f6cbaeb200b1f6527aefe
SHA256

cd4626bdc02e3fdc1a66f33f95c401f8f3528b972d28242e3315106b9d829c28
SHA512

cfb2504e68687ed41367cf55223e5e9b9faee793e3a553d0b67b8e818d33de5cd7b09991bdb0721d9989a356427ebf499fae26cc671e8096fd31c5081fa3b31c
SSDEEP

24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW

Score

7^/10

Malware Config

Targets

- Target
  
  cd4626bdc02e3fdc1a66f33f95c401f8f3528b972d28242e3315106b9d829c28
- Size
  
  1.1MB
- MD5
  
  742d500db0d7c943ee44af38ba45231e
- SHA1
  
  9ef555f8b21e9b5bea7f6cbaeb200b1f6527aefe
- SHA256
  
  cd4626bdc02e3fdc1a66f33f95c401f8f3528b972d28242e3315106b9d829c28
- SHA512
  
  cfb2504e68687ed41367cf55223e5e9b9faee793e3a553d0b67b8e818d33de5cd7b09991bdb0721d9989a356427ebf499fae26cc671e8096fd31c5081fa3b31c
- SSDEEP
  
  24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2