aed1c257a6c1c7e349e953cb607f2219ad2fb54b88d71b0e02497bd16aca46dd | Triage

Sharing

General

Target

aed1c257a6c1c7e349e953cb607f2219ad2fb54b88d71b0e02497bd16aca46dd
Size

1.1MB
Sample

221127-dsx1vaad71
MD5

d9b9fb85f76ff6a312dd91519bd31fcd
SHA1

7b5cedfb49d97f16961792b55881decfe9abeb21
SHA256

aed1c257a6c1c7e349e953cb607f2219ad2fb54b88d71b0e02497bd16aca46dd
SHA512

64e531f0491f283e437e65a1057964efd7282f50e02308c061ec3ffdd4df7870bb6ad3b57d9fbfa018e419a7721850db11935ebb671b3f1a2553827bfe92a8a0
SSDEEP

12288:+uklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHe:+3jl2WzbZL6gEAqEVmA7x6FAnc

Score

7^/10

Malware Config

Targets

- Target
  
  aed1c257a6c1c7e349e953cb607f2219ad2fb54b88d71b0e02497bd16aca46dd
- Size
  
  1.1MB
- MD5
  
  d9b9fb85f76ff6a312dd91519bd31fcd
- SHA1
  
  7b5cedfb49d97f16961792b55881decfe9abeb21
- SHA256
  
  aed1c257a6c1c7e349e953cb607f2219ad2fb54b88d71b0e02497bd16aca46dd
- SHA512
  
  64e531f0491f283e437e65a1057964efd7282f50e02308c061ec3ffdd4df7870bb6ad3b57d9fbfa018e419a7721850db11935ebb671b3f1a2553827bfe92a8a0
- SSDEEP
  
  12288:+uklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHe:+3jl2WzbZL6gEAqEVmA7x6FAnc
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2