a46b8da6fa14ec0a0633e81e5882f100b4f2051c6dd6448aebf1f80be83120d7 | Triage

Sharing

General

Target

a46b8da6fa14ec0a0633e81e5882f100b4f2051c6dd6448aebf1f80be83120d7
Size

1.1MB
Sample

221127-qtn6jsbc76
MD5

c4927c0dd8a744d97b1c2d36947fe387
SHA1

dacc88df61af55f74050f30fbc665e56d916fdeb
SHA256

a46b8da6fa14ec0a0633e81e5882f100b4f2051c6dd6448aebf1f80be83120d7
SHA512

d65bfc049ad2f985e1dfb58877fc6285c4df3cfa43f6242d6fcdf893b34c4eea5668557da386ca0e60c4d68a46fc2cca6eaaf6d4258fb81c6706ebfe5f114b84
SSDEEP

12288:7J84D/9Hfe6rfTJ6Lt8urB7Nj6fsfqdm7pTTCIu0EuG2a18RzY47E9ELluv9Ny4E:7F7WXbqdUTmWK29ZY47EiLMYTHyi

Score

7^/10

Malware Config

Targets

- Target
  
  a46b8da6fa14ec0a0633e81e5882f100b4f2051c6dd6448aebf1f80be83120d7
- Size
  
  1.1MB
- MD5
  
  c4927c0dd8a744d97b1c2d36947fe387
- SHA1
  
  dacc88df61af55f74050f30fbc665e56d916fdeb
- SHA256
  
  a46b8da6fa14ec0a0633e81e5882f100b4f2051c6dd6448aebf1f80be83120d7
- SHA512
  
  d65bfc049ad2f985e1dfb58877fc6285c4df3cfa43f6242d6fcdf893b34c4eea5668557da386ca0e60c4d68a46fc2cca6eaaf6d4258fb81c6706ebfe5f114b84
- SSDEEP
  
  12288:7J84D/9Hfe6rfTJ6Lt8urB7Nj6fsfqdm7pTTCIu0EuG2a18RzY47E9ELluv9Ny4E:7F7WXbqdUTmWK29ZY47EiLMYTHyi
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2