f22ede3d155bf3776a22d06a14bf7a24ead6f92d22c04d09e7665cded93bdf12 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f22ede3d155bf3776a22d06a14bf7a24ead6f92d22c04d09e7665cded93bdf12
Size

1.1MB
Sample

221029-f9mmjsdehl
MD5

2c7174ac85483a746c12ad4c8a07dba3
SHA1

6e451279307df581c41ed8e8f11161f10b086160
SHA256

f22ede3d155bf3776a22d06a14bf7a24ead6f92d22c04d09e7665cded93bdf12
SHA512

ffcb77e7400fd870b714101973e60022b028d12d64d1f7e6ea5a9d543a4d9a3651b14faf7e68b6a7f409c3b55ce842831182db563c4f4c0425dbf5b3984257cc
SSDEEP

12288:Bxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGsv:BgS73RKUsaVdzOotdDfStfsKafIgsv

Score

7^/10

Malware Config

Targets

- Target
  
  f22ede3d155bf3776a22d06a14bf7a24ead6f92d22c04d09e7665cded93bdf12
- Size
  
  1.1MB
- MD5
  
  2c7174ac85483a746c12ad4c8a07dba3
- SHA1
  
  6e451279307df581c41ed8e8f11161f10b086160
- SHA256
  
  f22ede3d155bf3776a22d06a14bf7a24ead6f92d22c04d09e7665cded93bdf12
- SHA512
  
  ffcb77e7400fd870b714101973e60022b028d12d64d1f7e6ea5a9d543a4d9a3651b14faf7e68b6a7f409c3b55ce842831182db563c4f4c0425dbf5b3984257cc
- SSDEEP
  
  12288:Bxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGsv:BgS73RKUsaVdzOotdDfStfsKafIgsv
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2