abd6e7d724dd79c01ac19bc2414a2aca5416770c59580d914c42df6e3cd331b0 | Triage

Sharing

General

Target

abd6e7d724dd79c01ac19bc2414a2aca5416770c59580d914c42df6e3cd331b0
Size

1.1MB
Sample

221127-qsmlbsbc23
MD5

5adfbb7f4d72b24cb2f2f2e644cd5fcf
SHA1

aa0d6eb88ab4b2d527b28809abe2705acb81308b
SHA256

abd6e7d724dd79c01ac19bc2414a2aca5416770c59580d914c42df6e3cd331b0
SHA512

0ca4f307e6c5ed91f1d50db872b8efd7098e2f348ed51e5022669c4436edf06c4fd7bb13e6f52222d5743401ec904af4fbc37788cef79196b4ffb43435a71b98
SSDEEP

24576:488FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wWs:48fRbE2VolvZWs

Score

7^/10

Malware Config

Targets

- Target
  
  abd6e7d724dd79c01ac19bc2414a2aca5416770c59580d914c42df6e3cd331b0
- Size
  
  1.1MB
- MD5
  
  5adfbb7f4d72b24cb2f2f2e644cd5fcf
- SHA1
  
  aa0d6eb88ab4b2d527b28809abe2705acb81308b
- SHA256
  
  abd6e7d724dd79c01ac19bc2414a2aca5416770c59580d914c42df6e3cd331b0
- SHA512
  
  0ca4f307e6c5ed91f1d50db872b8efd7098e2f348ed51e5022669c4436edf06c4fd7bb13e6f52222d5743401ec904af4fbc37788cef79196b4ffb43435a71b98
- SSDEEP
  
  24576:488FqvRKoPw8NEx4VmPmsDx7Gk+Reb0wWs:48fRbE2VolvZWs
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2