08f74397735c55ecbe4edebcfb4f6232b5b56f82d2ed946ac483d445f79a1f59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08f74397735c55ecbe4edebcfb4f6232b5b56f82d2ed946ac483d445f79a1f59
Size

1.0MB
Sample

221127-ear8baga72
MD5

9023ad4a4c4499f33c5acb75e019e77b
SHA1

6ea7020ed845675d6945974bc62018e5aff4cbe8
SHA256

08f74397735c55ecbe4edebcfb4f6232b5b56f82d2ed946ac483d445f79a1f59
SHA512

2a684fceb1432f49ec6a5ab2d7b6ec39c7454ab5513a2c55545475ca02e858130b377ba231eec54cbac98996e93b758f685423d5ebb9b21a3fdfdb16eacc44f3
SSDEEP

24576:zlafNPaNMDJOpKROZRpulZBVOkeOLimGHCmO+o:RaANaRGRpuHetmGimZo

Score

7^/10

Malware Config

Targets

- Target
  
  08f74397735c55ecbe4edebcfb4f6232b5b56f82d2ed946ac483d445f79a1f59
- Size
  
  1.0MB
- MD5
  
  9023ad4a4c4499f33c5acb75e019e77b
- SHA1
  
  6ea7020ed845675d6945974bc62018e5aff4cbe8
- SHA256
  
  08f74397735c55ecbe4edebcfb4f6232b5b56f82d2ed946ac483d445f79a1f59
- SHA512
  
  2a684fceb1432f49ec6a5ab2d7b6ec39c7454ab5513a2c55545475ca02e858130b377ba231eec54cbac98996e93b758f685423d5ebb9b21a3fdfdb16eacc44f3
- SSDEEP
  
  24576:zlafNPaNMDJOpKROZRpulZBVOkeOLimGHCmO+o:RaANaRGRpuHetmGimZo
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2