237e34fdf28f651e6a94f8261dbd5e178595dbf08a45a0dbbec1af441cf5e0e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

327039c8a996bf4039bc099681c94f8b
Size

570KB
Sample

231225-wgrc2agffp
MD5

327039c8a996bf4039bc099681c94f8b
SHA1

1ab467c40b6657459444fe75b23f72d7e0f1bd6a
SHA256

237e34fdf28f651e6a94f8261dbd5e178595dbf08a45a0dbbec1af441cf5e0e4
SHA512

78aaae5c0c567fdd2e3f258b95c5ed2d12b15421bc34cc08500427dd9d085de76d82dfd3edfdad1d36c4f4f0c3e3b129abc5089469c7cc5df9424e0552dc5ba0
SSDEEP

12288:TJtxXpzNquXxf52Tp48Dskkl/nmXqY7EglxLthdM7W3vDbH:tt7JDB52lf3w+XqY7NlZdiiH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  327039c8a996bf4039bc099681c94f8b
- Size
  
  570KB
- MD5
  
  327039c8a996bf4039bc099681c94f8b
- SHA1
  
  1ab467c40b6657459444fe75b23f72d7e0f1bd6a
- SHA256
  
  237e34fdf28f651e6a94f8261dbd5e178595dbf08a45a0dbbec1af441cf5e0e4
- SHA512
  
  78aaae5c0c567fdd2e3f258b95c5ed2d12b15421bc34cc08500427dd9d085de76d82dfd3edfdad1d36c4f4f0c3e3b129abc5089469c7cc5df9424e0552dc5ba0
- SSDEEP
  
  12288:TJtxXpzNquXxf52Tp48Dskkl/nmXqY7EglxLthdM7W3vDbH:tt7JDB52lf3w+XqY7NlZdiiH
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2