ee0cf03a33a368518ab5c280d2a25441640e3bb1f13037bcb19d2bea233e46c7 | Triage

Sharing

General

Target

ee0cf03a33a368518ab5c280d2a25441640e3bb1f13037bcb19d2bea233e46c7
Size

1.6MB
Sample

221123-y6ermsca46
MD5

bed8ecb9f67fbf62eb83e6cfb18fbdce
SHA1

f30ea267a57cacb73d57b13f3632e2bbbce4e0b6
SHA256

ee0cf03a33a368518ab5c280d2a25441640e3bb1f13037bcb19d2bea233e46c7
SHA512

c62cc40a68d7908fdffb9e0b127896793fad692864efd39a807690ac420fd77b6f77e95e72f38154644a4e2298a37b6580e031a7577af38582e5bfffaba6dca6
SSDEEP

49152:bVMgEV6piZUxF5dZlFlzt2Z+AtnciCnpVmIry5X3XH64YY0Gl+14ByqjtWHr3Q/E:bVMgEV6pLxF5fXlzts+AtnciCnpVmIrR

Score

7^/10

Malware Config

Targets

- Target
  
  ee0cf03a33a368518ab5c280d2a25441640e3bb1f13037bcb19d2bea233e46c7
- Size
  
  1.6MB
- MD5
  
  bed8ecb9f67fbf62eb83e6cfb18fbdce
- SHA1
  
  f30ea267a57cacb73d57b13f3632e2bbbce4e0b6
- SHA256
  
  ee0cf03a33a368518ab5c280d2a25441640e3bb1f13037bcb19d2bea233e46c7
- SHA512
  
  c62cc40a68d7908fdffb9e0b127896793fad692864efd39a807690ac420fd77b6f77e95e72f38154644a4e2298a37b6580e031a7577af38582e5bfffaba6dca6
- SSDEEP
  
  49152:bVMgEV6piZUxF5dZlFlzt2Z+AtnciCnpVmIry5X3XH64YY0Gl+14ByqjtWHr3Q/E:bVMgEV6pLxF5fXlzts+AtnciCnpVmIrR
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2