66a73b4bbf1241fe91446a82817aba794b6c683efb4402c99a22f9750eae9579 | Triage

Sharing

General

Target

66a73b4bbf1241fe91446a82817aba794b6c683efb4402c99a22f9750eae9579
Size

1.0MB
Sample

221127-kbw6jsga8s
MD5

2e9e7a48e15463cdbfdf12014744999b
SHA1

d06d360776f0aac0499cf8824fb2a3f6226af16c
SHA256

66a73b4bbf1241fe91446a82817aba794b6c683efb4402c99a22f9750eae9579
SHA512

e05eba4e5bd5cfd9ef0af35438b2e60ae865f56097713487baf9de8370fab181bf59dd7765e64a126be4a41b11e7e97b30aad1b78531289a2f72cdafa2a76218
SSDEEP

24576:ClafNPaNMDJOpKROZRpulZBVOkeOLimGHCmO+:iaANaRGRpuHetmGimZ

Score

7^/10

Malware Config

Targets

- Target
  
  66a73b4bbf1241fe91446a82817aba794b6c683efb4402c99a22f9750eae9579
- Size
  
  1.0MB
- MD5
  
  2e9e7a48e15463cdbfdf12014744999b
- SHA1
  
  d06d360776f0aac0499cf8824fb2a3f6226af16c
- SHA256
  
  66a73b4bbf1241fe91446a82817aba794b6c683efb4402c99a22f9750eae9579
- SHA512
  
  e05eba4e5bd5cfd9ef0af35438b2e60ae865f56097713487baf9de8370fab181bf59dd7765e64a126be4a41b11e7e97b30aad1b78531289a2f72cdafa2a76218
- SSDEEP
  
  24576:ClafNPaNMDJOpKROZRpulZBVOkeOLimGHCmO+:iaANaRGRpuHetmGimZ
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2