a6910f254c63b55f890db2a903a295e2e812e06bf2d16735515f4ae9e7fdf6a8 | Triage

Sharing

General

Target

a6910f254c63b55f890db2a903a295e2e812e06bf2d16735515f4ae9e7fdf6a8
Size

1.1MB
Sample

221127-jx87kafa9t
MD5

cb0928b28defadbc319347f988e3fd8b
SHA1

b4852bc9a6f3a48c51004dc6b13740c1184e4a60
SHA256

a6910f254c63b55f890db2a903a295e2e812e06bf2d16735515f4ae9e7fdf6a8
SHA512

055155f9fbeccd5b337dfb7481f06f2bf57cdf5fbaeda53e8258b0ec01a67f5ad1e7cbdb96b7d2072fee25e730cb3beb746f5984794450ea38a7aedbddd4596d
SSDEEP

12288:Exm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGsq:EgS73RKUsaVdzOotdDfStfsKafIgsq

Score

7^/10

Malware Config

Targets

- Target
  
  a6910f254c63b55f890db2a903a295e2e812e06bf2d16735515f4ae9e7fdf6a8
- Size
  
  1.1MB
- MD5
  
  cb0928b28defadbc319347f988e3fd8b
- SHA1
  
  b4852bc9a6f3a48c51004dc6b13740c1184e4a60
- SHA256
  
  a6910f254c63b55f890db2a903a295e2e812e06bf2d16735515f4ae9e7fdf6a8
- SHA512
  
  055155f9fbeccd5b337dfb7481f06f2bf57cdf5fbaeda53e8258b0ec01a67f5ad1e7cbdb96b7d2072fee25e730cb3beb746f5984794450ea38a7aedbddd4596d
- SSDEEP
  
  12288:Exm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGsq:EgS73RKUsaVdzOotdDfStfsKafIgsq
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2