b935cd73cee49361a869cdc0df4f9b5df3576d3f811e09c36b275823b3ee3536 | Triage

Sharing

General

Target

b935cd73cee49361a869cdc0df4f9b5df3576d3f811e09c36b275823b3ee3536
Size

44KB
Sample

221203-rvffgacf8s
MD5

80aacd5ab5a0495565b468e75ed93410
SHA1

b9d4bd4fbad87c30f249d2409657563765acefbd
SHA256

b935cd73cee49361a869cdc0df4f9b5df3576d3f811e09c36b275823b3ee3536
SHA512

5c938c20065e0026b61365da9991f59bd189282f1594ac3db73eb2f64b6d290a473bd612eafb036fd0d9e93d4332cfddaad17bbb99af438b544528336f86be67
SSDEEP

768:/cw4lTtzdLJyDj0/PJHtrTQzN9sROLW0y0lKAdr:/cw4lhzdVh/PtBTcNI7zQKAdr

Score

6^/10

Malware Config

Targets

- Target
  
  b935cd73cee49361a869cdc0df4f9b5df3576d3f811e09c36b275823b3ee3536
- Size
  
  44KB
- MD5
  
  80aacd5ab5a0495565b468e75ed93410
- SHA1
  
  b9d4bd4fbad87c30f249d2409657563765acefbd
- SHA256
  
  b935cd73cee49361a869cdc0df4f9b5df3576d3f811e09c36b275823b3ee3536
- SHA512
  
  5c938c20065e0026b61365da9991f59bd189282f1594ac3db73eb2f64b6d290a473bd612eafb036fd0d9e93d4332cfddaad17bbb99af438b544528336f86be67
- SSDEEP
  
  768:/cw4lTtzdLJyDj0/PJHtrTQzN9sROLW0y0lKAdr:/cw4lhzdVh/PtBTcNI7zQKAdr
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2