6d71ab4b9729e97fb2d387a148bbda8d7935b2f44b34d22e23b2f930cbb0910a | Triage

Sharing

General

Target

6d71ab4b9729e97fb2d387a148bbda8d7935b2f44b34d22e23b2f930cbb0910a
Size

1.1MB
Sample

221127-q51nqafg5w
MD5

5b7a940d4cfc73a45e7f75edb38a6c79
SHA1

feeb54f067ac0c0c02d8ef9e7902b41dbc507528
SHA256

6d71ab4b9729e97fb2d387a148bbda8d7935b2f44b34d22e23b2f930cbb0910a
SHA512

d4a2c09084c2166bafa40dbe7b8de48b1d96a817ed63a5be6566289a7e6224e567e1939587d4aadfb8c1f6547fe4fef2034301a58c70f971fe224cadc6a7a8e8
SSDEEP

24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW

Score

7^/10

Malware Config

Targets

- Target
  
  6d71ab4b9729e97fb2d387a148bbda8d7935b2f44b34d22e23b2f930cbb0910a
- Size
  
  1.1MB
- MD5
  
  5b7a940d4cfc73a45e7f75edb38a6c79
- SHA1
  
  feeb54f067ac0c0c02d8ef9e7902b41dbc507528
- SHA256
  
  6d71ab4b9729e97fb2d387a148bbda8d7935b2f44b34d22e23b2f930cbb0910a
- SHA512
  
  d4a2c09084c2166bafa40dbe7b8de48b1d96a817ed63a5be6566289a7e6224e567e1939587d4aadfb8c1f6547fe4fef2034301a58c70f971fe224cadc6a7a8e8
- SSDEEP
  
  24576:o88FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wW:o8fRbE2VolvZW
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2