b656fd553c6e66bb65cb2509f00d3de3072ac099183f1bb2106ba267e9456e32 | Triage

Sharing

General

Target

b656fd553c6e66bb65cb2509f00d3de3072ac099183f1bb2106ba267e9456e32
Size

1.0MB
Sample

221127-qq36asef8t
MD5

9263b0b7150e6a18458587861016e530
SHA1

cbfb194f26ef9de5e167038bf56a3006c7f116f6
SHA256

b656fd553c6e66bb65cb2509f00d3de3072ac099183f1bb2106ba267e9456e32
SHA512

c91045e48b3a9793911d384e882e38a4f047ec22e210b9876e7f56c4d5fbe23f1231a3a15064b71957e5f5a3112b1feb832911cd285f7adac2c73868791e174d
SSDEEP

24576:JlcZbTZvSDFbC+IX0RFLlVeUXHPwPzwIRm0m+b+:JloGF5EUXHP8Lb+

Score

7^/10

Malware Config

Targets

- Target
  
  b656fd553c6e66bb65cb2509f00d3de3072ac099183f1bb2106ba267e9456e32
- Size
  
  1.0MB
- MD5
  
  9263b0b7150e6a18458587861016e530
- SHA1
  
  cbfb194f26ef9de5e167038bf56a3006c7f116f6
- SHA256
  
  b656fd553c6e66bb65cb2509f00d3de3072ac099183f1bb2106ba267e9456e32
- SHA512
  
  c91045e48b3a9793911d384e882e38a4f047ec22e210b9876e7f56c4d5fbe23f1231a3a15064b71957e5f5a3112b1feb832911cd285f7adac2c73868791e174d
- SSDEEP
  
  24576:JlcZbTZvSDFbC+IX0RFLlVeUXHPwPzwIRm0m+b+:JloGF5EUXHP8Lb+
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2