a8d5a34bf513203818880caeadea94ee30798c5ac7e63adad4fe5f5670323303 | Triage

Sharing

General

Target

a8d5a34bf513203818880caeadea94ee30798c5ac7e63adad4fe5f5670323303
Size

1.1MB
Sample

221127-jx6rfafa8y
MD5

6c74911234cea295e86a58edc68c78a0
SHA1

08ed90659c0d81fddf9646739c6a570a544acf86
SHA256

a8d5a34bf513203818880caeadea94ee30798c5ac7e63adad4fe5f5670323303
SHA512

902f9100d739f3bd21a20b54325cc2a87e73c992d2a51abd3f6a1d7257877090fe8b4494137d96bd3a7e97d68ab21bd8076da74f86d8c71959169d15a7c1903a
SSDEEP

12288:cxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs0:cgS73RKUsaVdzOotdDfStfsKafIgs0

Score

7^/10

Malware Config

Targets

- Target
  
  a8d5a34bf513203818880caeadea94ee30798c5ac7e63adad4fe5f5670323303
- Size
  
  1.1MB
- MD5
  
  6c74911234cea295e86a58edc68c78a0
- SHA1
  
  08ed90659c0d81fddf9646739c6a570a544acf86
- SHA256
  
  a8d5a34bf513203818880caeadea94ee30798c5ac7e63adad4fe5f5670323303
- SHA512
  
  902f9100d739f3bd21a20b54325cc2a87e73c992d2a51abd3f6a1d7257877090fe8b4494137d96bd3a7e97d68ab21bd8076da74f86d8c71959169d15a7c1903a
- SSDEEP
  
  12288:cxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs0:cgS73RKUsaVdzOotdDfStfsKafIgs0
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2