7529a4f5614ab64900fd7aeb484abf04e3b42ea0a040ccd55cf2f5f24949504d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7529a4f5614ab64900fd7aeb484abf04e3b42ea0a040ccd55cf2f5f24949504d
Size

1.0MB
Sample

221127-q38asaff4s
MD5

8c22665563673f860fe32bfd4b984f21
SHA1

ee1425d84f060192cf45be0bdaec9aaae78ff207
SHA256

7529a4f5614ab64900fd7aeb484abf04e3b42ea0a040ccd55cf2f5f24949504d
SHA512

422d28651f6957ef033c00d8303cd8fa7c4daef99a1091f47fcfd40b1c12ae033ef8adfb9772ddca50faa49a3bf41613789784d32519c06ad1a4dd62a44350d8
SSDEEP

24576:plcZbTZvSDFbC+IX0RFLlVeUXHPwPzwIRm0m+b+:ploGF5EUXHP8Lb+

Score

7^/10

Malware Config

Targets

- Target
  
  7529a4f5614ab64900fd7aeb484abf04e3b42ea0a040ccd55cf2f5f24949504d
- Size
  
  1.0MB
- MD5
  
  8c22665563673f860fe32bfd4b984f21
- SHA1
  
  ee1425d84f060192cf45be0bdaec9aaae78ff207
- SHA256
  
  7529a4f5614ab64900fd7aeb484abf04e3b42ea0a040ccd55cf2f5f24949504d
- SHA512
  
  422d28651f6957ef033c00d8303cd8fa7c4daef99a1091f47fcfd40b1c12ae033ef8adfb9772ddca50faa49a3bf41613789784d32519c06ad1a4dd62a44350d8
- SSDEEP
  
  24576:plcZbTZvSDFbC+IX0RFLlVeUXHPwPzwIRm0m+b+:ploGF5EUXHP8Lb+
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2