8c7fd2b9dd149c878dec222835d00800ce1c31940c487fd90d4ae7ad56288ec9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c7fd2b9dd149c878dec222835d00800ce1c31940c487fd90d4ae7ad56288ec9
Size

123KB
Sample

221129-v29vfaad92
MD5

80716b7bf2901417a774986f4b6b4640
SHA1

e2a41068950580472e773063c094847a84d87b8f
SHA256

8c7fd2b9dd149c878dec222835d00800ce1c31940c487fd90d4ae7ad56288ec9
SHA512

08c31d9722ebd73c93a9adc99ffeb717acfd13f339a5b8ff63151f891a14dbe39abeb865233133960d1eb9d2a34cda59197713073898f1a522f73a1eba66289d
SSDEEP

1536:HnaA+jI5+eCNnSIn0qdtg2c5sbMj+hyXKkaXor1e1MV:/zvkSIXLc5sbnEKorXV

Score

6^/10

Malware Config

Targets

- Target
  
  8c7fd2b9dd149c878dec222835d00800ce1c31940c487fd90d4ae7ad56288ec9
- Size
  
  123KB
- MD5
  
  80716b7bf2901417a774986f4b6b4640
- SHA1
  
  e2a41068950580472e773063c094847a84d87b8f
- SHA256
  
  8c7fd2b9dd149c878dec222835d00800ce1c31940c487fd90d4ae7ad56288ec9
- SHA512
  
  08c31d9722ebd73c93a9adc99ffeb717acfd13f339a5b8ff63151f891a14dbe39abeb865233133960d1eb9d2a34cda59197713073898f1a522f73a1eba66289d
- SSDEEP
  
  1536:HnaA+jI5+eCNnSIn0qdtg2c5sbMj+hyXKkaXor1e1MV:/zvkSIXLc5sbnEKorXV
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2