3725e7fd7e55cedab95a2e35758c4d71c531f28c4b2495b75feaa80134b4fe73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.3eaa86d5d52300f467a8bc0bbe529340.exe
Size

68KB
Sample

231021-z5marsce2w
MD5

3eaa86d5d52300f467a8bc0bbe529340
SHA1

760cdbb6dc28c66e2051bad86a8ef555ab324eff
SHA256

3725e7fd7e55cedab95a2e35758c4d71c531f28c4b2495b75feaa80134b4fe73
SHA512

df221d77ee3dd33e88a89ca5988e1be5d9aec057385b508010594ef747254d7ef983905a8a93b027f16204dd8436d607edeaccc3ac99f65776bd6a32303d3b48
SSDEEP

1536:LrU3bcDaXcWGm6uLt95ycyLnZSVvfYXf6Xct/axWZl:Lg3YDaum6uLt95ycyLnZSVvfYXf6XcVf

Score

6^/10

Malware Config

Targets

- Target
  
  NEAS.3eaa86d5d52300f467a8bc0bbe529340.exe
- Size
  
  68KB
- MD5
  
  3eaa86d5d52300f467a8bc0bbe529340
- SHA1
  
  760cdbb6dc28c66e2051bad86a8ef555ab324eff
- SHA256
  
  3725e7fd7e55cedab95a2e35758c4d71c531f28c4b2495b75feaa80134b4fe73
- SHA512
  
  df221d77ee3dd33e88a89ca5988e1be5d9aec057385b508010594ef747254d7ef983905a8a93b027f16204dd8436d607edeaccc3ac99f65776bd6a32303d3b48
- SSDEEP
  
  1536:LrU3bcDaXcWGm6uLt95ycyLnZSVvfYXf6Xct/axWZl:Lg3YDaum6uLt95ycyLnZSVvfYXf6XcVf
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2