8cfab1fc8982f8aaf3bbc3d44b95acb2a76e1783c877c8c26daf2137d45f03dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cfab1fc8982f8aaf3bbc3d44b95acb2a76e1783c877c8c26daf2137d45f03dd
Size

1.0MB
Sample

221127-dw4ykafb47
MD5

246423ac8410f05c41dd5335afe5a05a
SHA1

785ff165e5dea9da9e6b1c948de8559ea28d6886
SHA256

8cfab1fc8982f8aaf3bbc3d44b95acb2a76e1783c877c8c26daf2137d45f03dd
SHA512

f3adf368e311bad19c888344994326378bfeb6fb5c3139f049a4a298266332fd7f017eba1db738c6d15103d6b51f9737bf05fc738d02f9a3e792a0327112e069
SSDEEP

24576:yO9NENGtIfz4RItOQDlfhG83DAIUnGkJp1GBX:yg+NBOQ9c83D271GB

Score

7^/10

Malware Config

Targets

- Target
  
  8cfab1fc8982f8aaf3bbc3d44b95acb2a76e1783c877c8c26daf2137d45f03dd
- Size
  
  1.0MB
- MD5
  
  246423ac8410f05c41dd5335afe5a05a
- SHA1
  
  785ff165e5dea9da9e6b1c948de8559ea28d6886
- SHA256
  
  8cfab1fc8982f8aaf3bbc3d44b95acb2a76e1783c877c8c26daf2137d45f03dd
- SHA512
  
  f3adf368e311bad19c888344994326378bfeb6fb5c3139f049a4a298266332fd7f017eba1db738c6d15103d6b51f9737bf05fc738d02f9a3e792a0327112e069
- SSDEEP
  
  24576:yO9NENGtIfz4RItOQDlfhG83DAIUnGkJp1GBX:yg+NBOQ9c83D271GB
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2