ae7dc8ca63f89a48febc0166ead0dacb63ba84f10ce5a5067639b7bcbf65cdcc | Triage

Sharing

General

Target

ae7dc8ca63f89a48febc0166ead0dacb63ba84f10ce5a5067639b7bcbf65cdcc
Size

1.1MB
Sample

221029-nyg7pafbhm
MD5

d1842c934712bf3fe118244714412e89
SHA1

7d80e0eb55a1601d7630a793ab2170aefa28442a
SHA256

ae7dc8ca63f89a48febc0166ead0dacb63ba84f10ce5a5067639b7bcbf65cdcc
SHA512

0aced7858908b206b2d824d215a62b56b153c3743da30ee0cc86d6d3d0ab77508f8a396cf0c02b0d8c3bc291fcf0803e8ad1f47f1aa3ad8a02f2b949f07ed6cc
SSDEEP

24576:I88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:I8fRbE2VolvZW

Score

7^/10

Malware Config

Targets

- Target
  
  ae7dc8ca63f89a48febc0166ead0dacb63ba84f10ce5a5067639b7bcbf65cdcc
- Size
  
  1.1MB
- MD5
  
  d1842c934712bf3fe118244714412e89
- SHA1
  
  7d80e0eb55a1601d7630a793ab2170aefa28442a
- SHA256
  
  ae7dc8ca63f89a48febc0166ead0dacb63ba84f10ce5a5067639b7bcbf65cdcc
- SHA512
  
  0aced7858908b206b2d824d215a62b56b153c3743da30ee0cc86d6d3d0ab77508f8a396cf0c02b0d8c3bc291fcf0803e8ad1f47f1aa3ad8a02f2b949f07ed6cc
- SSDEEP
  
  24576:I88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:I8fRbE2VolvZW
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2