a18910a6c74744e4086db1bd6afe28094e0c50f7ce15027d7c6583dae9acba2c | Triage

Sharing

General

Target

a18910a6c74744e4086db1bd6afe28094e0c50f7ce15027d7c6583dae9acba2c
Size

1.1MB
Sample

221127-jybmpafa9y
MD5

f22184dd28ac5d7452aaf16cd3f4d19b
SHA1

26995aa70c005a952710128058bb86e9ea7ac544
SHA256

a18910a6c74744e4086db1bd6afe28094e0c50f7ce15027d7c6583dae9acba2c
SHA512

914c071e2c25adb2d2b65fdcbbc010544acfc470edf7992903d9856a6a06df38066a6c76245d8b1666050b08045ac4fc241dc1a1dd448395a65375a741ea02cd
SSDEEP

12288:xxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs:xgS73RKUsaVdzOotdDfStfsKafIgs

Score

7^/10

Malware Config

Targets

- Target
  
  a18910a6c74744e4086db1bd6afe28094e0c50f7ce15027d7c6583dae9acba2c
- Size
  
  1.1MB
- MD5
  
  f22184dd28ac5d7452aaf16cd3f4d19b
- SHA1
  
  26995aa70c005a952710128058bb86e9ea7ac544
- SHA256
  
  a18910a6c74744e4086db1bd6afe28094e0c50f7ce15027d7c6583dae9acba2c
- SHA512
  
  914c071e2c25adb2d2b65fdcbbc010544acfc470edf7992903d9856a6a06df38066a6c76245d8b1666050b08045ac4fc241dc1a1dd448395a65375a741ea02cd
- SSDEEP
  
  12288:xxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs:xgS73RKUsaVdzOotdDfStfsKafIgs
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2