3bb5956b411cde7590cae49a640b835783e57c2820b79db5dd23b930ef447d71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bb5956b411cde7590cae49a640b835783e57c2820b79db5dd23b930ef447d71
Size

959KB
Sample

221127-22sz9aah8y
MD5

0a09af63f7e0b2e61ada24ef7b6306f6
SHA1

b083d5a35e21cd97a127f01b3238df2ee0ab1ff3
SHA256

3bb5956b411cde7590cae49a640b835783e57c2820b79db5dd23b930ef447d71
SHA512

eb1078f248b1fb1c7e93c5e7153176ff6089ff0aaa44d0848bc82824d783540034fb69c03c1607a1f36588311c90c49ff029046c1f2313806ce5052a7ad8754e
SSDEEP

24576:wob9GXioEE6FY5fQ5emJYeXOxXzF6oHU9gf:wohGXiBE6FY1ps656tg

Score

7^/10

Malware Config

Targets

- Target
  
  3bb5956b411cde7590cae49a640b835783e57c2820b79db5dd23b930ef447d71
- Size
  
  959KB
- MD5
  
  0a09af63f7e0b2e61ada24ef7b6306f6
- SHA1
  
  b083d5a35e21cd97a127f01b3238df2ee0ab1ff3
- SHA256
  
  3bb5956b411cde7590cae49a640b835783e57c2820b79db5dd23b930ef447d71
- SHA512
  
  eb1078f248b1fb1c7e93c5e7153176ff6089ff0aaa44d0848bc82824d783540034fb69c03c1607a1f36588311c90c49ff029046c1f2313806ce5052a7ad8754e
- SSDEEP
  
  24576:wob9GXioEE6FY5fQ5emJYeXOxXzF6oHU9gf:wohGXiBE6FY1ps656tg
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2