6c37ec80e900560f81d99bce665f152fc0484d3ec72a258bdf2578af2865e0f9 | Triage

Sharing

General

Target

6c37ec80e900560f81d99bce665f152fc0484d3ec72a258bdf2578af2865e0f9
Size

952KB
Sample

221205-q573ssfa33
MD5

02072f5e4b60be12cd3e0847e64a7840
SHA1

9774aef6ac44d20c553d171ae68c23b77569cfbd
SHA256

6c37ec80e900560f81d99bce665f152fc0484d3ec72a258bdf2578af2865e0f9
SHA512

b5724fa9b2178e80b0c6c9475803d901eb5ec75f38f2abc1b246b79852fd365a7762fadaf9ff1f2cf66b67af8f9a11b72bd4926ec017c6af7c57c31bf983deba
SSDEEP

24576:p3k/iAmGGayVdT2ZwEuRMHdRL0wQ77d/8:poaGYnT2ZaSnLd6U

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6c37ec80e900560f81d99bce665f152fc0484d3ec72a258bdf2578af2865e0f9
- Size
  
  952KB
- MD5
  
  02072f5e4b60be12cd3e0847e64a7840
- SHA1
  
  9774aef6ac44d20c553d171ae68c23b77569cfbd
- SHA256
  
  6c37ec80e900560f81d99bce665f152fc0484d3ec72a258bdf2578af2865e0f9
- SHA512
  
  b5724fa9b2178e80b0c6c9475803d901eb5ec75f38f2abc1b246b79852fd365a7762fadaf9ff1f2cf66b67af8f9a11b72bd4926ec017c6af7c57c31bf983deba
- SSDEEP
  
  24576:p3k/iAmGGayVdT2ZwEuRMHdRL0wQ77d/8:poaGYnT2ZaSnLd6U
Score

7^/10

persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2