b724aece23004f632366760b519bd8e77b6dea1a06db5a819287432b0ca60afb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b724aece23004f632366760b519bd8e77b6dea1a06db5a819287432b0ca60afb
Size

1.0MB
Sample

221128-hjb48sda49
MD5

4f7bdd4f9a3aebba7cd02de264b5e4b7
SHA1

c4618d7d485ebc39b76e2e715914a30288ebd268
SHA256

b724aece23004f632366760b519bd8e77b6dea1a06db5a819287432b0ca60afb
SHA512

75c4b0da0f087c38f7a4475a52cce0fcd38473a0f7e676a5b33278be8335f4b17ac2bb80e71ea6f47b692d56dc19af615d093a1ecf9ffa476e88b3a99236b816
SSDEEP

24576:ObPCL1JgbPUv3aPLEPj+f88ChrjFZ3Iun/pgwzoO5:Rh2PUvhPjy8Nhrn3V/zzo

Score

7^/10

Malware Config

Targets

- Target
  
  b724aece23004f632366760b519bd8e77b6dea1a06db5a819287432b0ca60afb
- Size
  
  1.0MB
- MD5
  
  4f7bdd4f9a3aebba7cd02de264b5e4b7
- SHA1
  
  c4618d7d485ebc39b76e2e715914a30288ebd268
- SHA256
  
  b724aece23004f632366760b519bd8e77b6dea1a06db5a819287432b0ca60afb
- SHA512
  
  75c4b0da0f087c38f7a4475a52cce0fcd38473a0f7e676a5b33278be8335f4b17ac2bb80e71ea6f47b692d56dc19af615d093a1ecf9ffa476e88b3a99236b816
- SSDEEP
  
  24576:ObPCL1JgbPUv3aPLEPj+f88ChrjFZ3Iun/pgwzoO5:Rh2PUvhPjy8Nhrn3V/zzo
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Loads dropped DLL
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2