d748eb9df475cc143ab5fb018233ea8906cdbcae9777c2d0778b97394df7ee94 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d748eb9df475cc143ab5fb018233ea8906cdbcae9777c2d0778b97394df7ee94
Size

936KB
Sample

221030-ewkelacgap
MD5

a3786d167eaf5e1826c16bc99fa38a60
SHA1

bf413fe96de150c8c5888c6577e99c1c0a6c56ee
SHA256

d748eb9df475cc143ab5fb018233ea8906cdbcae9777c2d0778b97394df7ee94
SHA512

111d6a21ac7725d384168ce524301dd55932d3ef0e0851cbddf2a2849c4e69621bc7e2432f3345afaa702bb16dcab84071e9763f62673521e349c9c9a3908ebf
SSDEEP

12288:2cMZAZWOoYkf4gYxjZL+GgPsmFXIU5KM5m7qSfAvgB4y7QpQl:KSutwgw/qX4rVfpB4y7Dl

Score

7^/10

Malware Config

Targets

- Target
  
  d748eb9df475cc143ab5fb018233ea8906cdbcae9777c2d0778b97394df7ee94
- Size
  
  936KB
- MD5
  
  a3786d167eaf5e1826c16bc99fa38a60
- SHA1
  
  bf413fe96de150c8c5888c6577e99c1c0a6c56ee
- SHA256
  
  d748eb9df475cc143ab5fb018233ea8906cdbcae9777c2d0778b97394df7ee94
- SHA512
  
  111d6a21ac7725d384168ce524301dd55932d3ef0e0851cbddf2a2849c4e69621bc7e2432f3345afaa702bb16dcab84071e9763f62673521e349c9c9a3908ebf
- SSDEEP
  
  12288:2cMZAZWOoYkf4gYxjZL+GgPsmFXIU5KM5m7qSfAvgB4y7QpQl:KSutwgw/qX4rVfpB4y7Dl
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2