790d2fba450d26ee8285b8a478098655dd64794e58b48e6b5f2269709b4cd525 | Triage

Sharing

General

Target

790d2fba450d26ee8285b8a478098655dd64794e58b48e6b5f2269709b4cd525
Size

1.1MB
Sample

221127-jzrejabe82
MD5

bfa4c1ccfe278f0704ebdaab0e9f038f
SHA1

68dfff3ac2c071265691a503c1fae346b7ad7a05
SHA256

790d2fba450d26ee8285b8a478098655dd64794e58b48e6b5f2269709b4cd525
SHA512

4891eb8be317e80f66148981cdca03fbe9b9bcc5e737a4c2e22c23ab681a269bdee287708a667a453e488e511323521ce33ce5783d0ace4548a4a3d84ddd21e9
SSDEEP

12288:xxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs6:xgS73RKUsaVdzOotdDfStfsKafIgs6

Score

7^/10

Malware Config

Targets

- Target
  
  790d2fba450d26ee8285b8a478098655dd64794e58b48e6b5f2269709b4cd525
- Size
  
  1.1MB
- MD5
  
  bfa4c1ccfe278f0704ebdaab0e9f038f
- SHA1
  
  68dfff3ac2c071265691a503c1fae346b7ad7a05
- SHA256
  
  790d2fba450d26ee8285b8a478098655dd64794e58b48e6b5f2269709b4cd525
- SHA512
  
  4891eb8be317e80f66148981cdca03fbe9b9bcc5e737a4c2e22c23ab681a269bdee287708a667a453e488e511323521ce33ce5783d0ace4548a4a3d84ddd21e9
- SSDEEP
  
  12288:xxm03dDATu3TtKUhG3QQkrEcdvMqH1dznOotRldDfHbg5+MH/QTK7ufrncquNGs6:xgS73RKUsaVdzOotdDfStfsKafIgs6
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2