23656cefc2b3cb39f79305404ca77120b88807933ca88246ce0b3b4825018ca9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

270edc8f3138a02aac1476a75e7bba98
Size

521KB
Sample

231225-r8d5kacdgj
MD5

270edc8f3138a02aac1476a75e7bba98
SHA1

743abfffc26e8fa3fba9fc10b2e794154c74dc8d
SHA256

23656cefc2b3cb39f79305404ca77120b88807933ca88246ce0b3b4825018ca9
SHA512

641718f2f5e349bb5b3ce0f54b145d61de672470d5c2dc1a986ae8c5bf2955b78a3b81ac7a53ef33a98c5a382bbc424c7dff19ffed12b485641db0b3641512d3
SSDEEP

12288:sL7GuyK/RFuWzlbyCCVUVrvet55WaVwzOFd2RnKLbNaQ/CX2xVkNL:QXyidzJynUVc5YaiOGRKXNCuGNL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  270edc8f3138a02aac1476a75e7bba98
- Size
  
  521KB
- MD5
  
  270edc8f3138a02aac1476a75e7bba98
- SHA1
  
  743abfffc26e8fa3fba9fc10b2e794154c74dc8d
- SHA256
  
  23656cefc2b3cb39f79305404ca77120b88807933ca88246ce0b3b4825018ca9
- SHA512
  
  641718f2f5e349bb5b3ce0f54b145d61de672470d5c2dc1a986ae8c5bf2955b78a3b81ac7a53ef33a98c5a382bbc424c7dff19ffed12b485641db0b3641512d3
- SSDEEP
  
  12288:sL7GuyK/RFuWzlbyCCVUVrvet55WaVwzOFd2RnKLbNaQ/CX2xVkNL:QXyidzJynUVc5YaiOGRKXNCuGNL
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2