abea444a45133f0a0f317cec2041718f586fa898ca0e2856a4432f5135fefb97 | Triage

Sharing

General

Target

abea444a45133f0a0f317cec2041718f586fa898ca0e2856a4432f5135fefb97
Size

853KB
Sample

221124-ep6n9abd5s
MD5

3ff526a276f0cefd2ae168c939574de9
SHA1

94601edab8f8720f2e258119baeffc66c3294c81
SHA256

abea444a45133f0a0f317cec2041718f586fa898ca0e2856a4432f5135fefb97
SHA512

0a9c42a788675d9b8bf6054a464dfcb5981cedb3418507e70f71f5bbf3cef99cfcdb8e585973cc7d83c265c823fba2c32cd30cec7038ee77edf5af9465b8c551
SSDEEP

24576:1Yq2/9nnr5cDNsOQfKJL9ki1arPvi/cjaBYfv:mqaxyDC2JmSoPvikO8

Score

7^/10

Malware Config

Targets

- Target
  
  abea444a45133f0a0f317cec2041718f586fa898ca0e2856a4432f5135fefb97
- Size
  
  853KB
- MD5
  
  3ff526a276f0cefd2ae168c939574de9
- SHA1
  
  94601edab8f8720f2e258119baeffc66c3294c81
- SHA256
  
  abea444a45133f0a0f317cec2041718f586fa898ca0e2856a4432f5135fefb97
- SHA512
  
  0a9c42a788675d9b8bf6054a464dfcb5981cedb3418507e70f71f5bbf3cef99cfcdb8e585973cc7d83c265c823fba2c32cd30cec7038ee77edf5af9465b8c551
- SSDEEP
  
  24576:1Yq2/9nnr5cDNsOQfKJL9ki1arPvi/cjaBYfv:mqaxyDC2JmSoPvikO8
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2