0b3ff2591c1217ae89ab17dc31c2020cdd1acf0d536e134b5822d42ca40bb571 | Triage

Sharing

General

Target

0b3ff2591c1217ae89ab17dc31c2020cdd1acf0d536e134b5822d42ca40bb571
Size

1.3MB
Sample

221127-rrnbxahd4z
MD5

c92e658b1f9dd4eb1d428689c8f675d2
SHA1

85e7de5d6a2c8f98f921cfcc4cc5ac02fa167bf6
SHA256

0b3ff2591c1217ae89ab17dc31c2020cdd1acf0d536e134b5822d42ca40bb571
SHA512

58f2218aa7fe07326960fa87ca17ff469f586d8f9e3337e4a90a1338ea91357ce0b60d4217301125154abd5b61eb49deb10f1a7e119d886918f22169350c79cb
SSDEEP

24576:KK6fxaOhc2dC3Rfzy41rWibAiCEydknBds0a0m1lK8e:L6JpC3RLy41aibAiCE1Ps0a1LKN

Score

7^/10

Malware Config

Targets

- Target
  
  0b3ff2591c1217ae89ab17dc31c2020cdd1acf0d536e134b5822d42ca40bb571
- Size
  
  1.3MB
- MD5
  
  c92e658b1f9dd4eb1d428689c8f675d2
- SHA1
  
  85e7de5d6a2c8f98f921cfcc4cc5ac02fa167bf6
- SHA256
  
  0b3ff2591c1217ae89ab17dc31c2020cdd1acf0d536e134b5822d42ca40bb571
- SHA512
  
  58f2218aa7fe07326960fa87ca17ff469f586d8f9e3337e4a90a1338ea91357ce0b60d4217301125154abd5b61eb49deb10f1a7e119d886918f22169350c79cb
- SSDEEP
  
  24576:KK6fxaOhc2dC3Rfzy41rWibAiCEydknBds0a0m1lK8e:L6JpC3RLy41aibAiCE1Ps0a1LKN
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2