98d420ee83343aa8f65ec91be864137a72488ae06cf4384d7ffa1b2d933c72dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98d420ee83343aa8f65ec91be864137a72488ae06cf4384d7ffa1b2d933c72dd
Size

1.1MB
Sample

221127-dvzbpaaf2y
MD5

2f6002efa773f9836bd9075bc79046fd
SHA1

3f7f5a54001342fdfc6d9c5c3906e822024a4f80
SHA256

98d420ee83343aa8f65ec91be864137a72488ae06cf4384d7ffa1b2d933c72dd
SHA512

cc1a5377121dc0774c44b0e7ef60a7c6f33fe4161ee783743ca1f976684a766bf8e70bee3da44988cf379b48c7387bcb6824623fb2e9ed48d0ea1483a973d9da
SSDEEP

12288:OuklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHn:O3jl2WzbZL6gEAqEVmA7x6FAncC

Score

7^/10

Malware Config

Targets

- Target
  
  98d420ee83343aa8f65ec91be864137a72488ae06cf4384d7ffa1b2d933c72dd
- Size
  
  1.1MB
- MD5
  
  2f6002efa773f9836bd9075bc79046fd
- SHA1
  
  3f7f5a54001342fdfc6d9c5c3906e822024a4f80
- SHA256
  
  98d420ee83343aa8f65ec91be864137a72488ae06cf4384d7ffa1b2d933c72dd
- SHA512
  
  cc1a5377121dc0774c44b0e7ef60a7c6f33fe4161ee783743ca1f976684a766bf8e70bee3da44988cf379b48c7387bcb6824623fb2e9ed48d0ea1483a973d9da
- SSDEEP
  
  12288:OuklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHn:O3jl2WzbZL6gEAqEVmA7x6FAncC
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2