a6b5a887b745fa361e39086ccd32db0da8d58816018bf0d754ce67f93dfb11c0 | Triage

Sharing

General

Target

5609844b84aa5848531df02fd752f5a2
Size

103KB
Sample

240112-k1t3gsdacm
MD5

5609844b84aa5848531df02fd752f5a2
SHA1

84740cb9af0ae7ac0a87a75b625ae43e37000dbb
SHA256

a6b5a887b745fa361e39086ccd32db0da8d58816018bf0d754ce67f93dfb11c0
SHA512

e8e5e7404d726a04bd3f4a4ff9421e6d85e949be219c6ada0802ea35badeb4c2717b71fb3daa5cb48016dca66cd95f05a8f36625f3cf79be14fb24f4769b8de2
SSDEEP

1536:VZtJ5i0fyy/nHOrTVzNRVODOWXFIYwApAk1kUP1HR8juuFbV416nZS61/s+:jt20awurTVzNjODO/kR1kUx6b616ns

Score

6^/10

Malware Config

Targets

- Target
  
  5609844b84aa5848531df02fd752f5a2
- Size
  
  103KB
- MD5
  
  5609844b84aa5848531df02fd752f5a2
- SHA1
  
  84740cb9af0ae7ac0a87a75b625ae43e37000dbb
- SHA256
  
  a6b5a887b745fa361e39086ccd32db0da8d58816018bf0d754ce67f93dfb11c0
- SHA512
  
  e8e5e7404d726a04bd3f4a4ff9421e6d85e949be219c6ada0802ea35badeb4c2717b71fb3daa5cb48016dca66cd95f05a8f36625f3cf79be14fb24f4769b8de2
- SSDEEP
  
  1536:VZtJ5i0fyy/nHOrTVzNRVODOWXFIYwApAk1kUP1HR8juuFbV416nZS61/s+:jt20awurTVzNjODO/kR1kUx6b616ns
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2