bc705f4d0cf525a111a57f3bfcf72ca43ece09b144ad738bc30fddbb61ffdcb4 | Triage

Sharing

General

Target

bc705f4d0cf525a111a57f3bfcf72ca43ece09b144ad738bc30fddbb61ffdcb4
Size

60KB
Sample

221202-zgrwcacc73
MD5

1f5f5814a76cf2ccdf99ad1067b9d370
SHA1

966ba0297e8e419565de0fef43da339c8a2d3d7d
SHA256

bc705f4d0cf525a111a57f3bfcf72ca43ece09b144ad738bc30fddbb61ffdcb4
SHA512

89ced9062f3e0a100bad32d1804f57dfc48ced62fc25d35e29208e7dfd7ce31e2553ea2f526e4576124f485f38085d93255871b2e3e319166f6bde478c3b6b6f
SSDEEP

768:zqhvY9EoYJr7iebctwwb9HxxYqUKB0q9IFCu2DBSDlqNl/la150Jamd4lf+wqnL8:zepwd9HIjKB0q96gBSDlqH/lxlIV

Score

6^/10

Malware Config

Targets

- Target
  
  bc705f4d0cf525a111a57f3bfcf72ca43ece09b144ad738bc30fddbb61ffdcb4
- Size
  
  60KB
- MD5
  
  1f5f5814a76cf2ccdf99ad1067b9d370
- SHA1
  
  966ba0297e8e419565de0fef43da339c8a2d3d7d
- SHA256
  
  bc705f4d0cf525a111a57f3bfcf72ca43ece09b144ad738bc30fddbb61ffdcb4
- SHA512
  
  89ced9062f3e0a100bad32d1804f57dfc48ced62fc25d35e29208e7dfd7ce31e2553ea2f526e4576124f485f38085d93255871b2e3e319166f6bde478c3b6b6f
- SSDEEP
  
  768:zqhvY9EoYJr7iebctwwb9HxxYqUKB0q9IFCu2DBSDlqNl/la150Jamd4lf+wqnL8:zepwd9HIjKB0q96gBSDlqH/lxlIV
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2