fd7786f950249c6359cbbfed4ee3159654be1a376e0743690a6e8a9c469a8901 | Triage

Sharing

General

Target

fd7786f950249c6359cbbfed4ee3159654be1a376e0743690a6e8a9c469a8901
Size

959KB
Sample

221128-jm1sfacb21
MD5

09f6910998b75b3b7cf37f0f0fc47dc1
SHA1

767a15ad8950032ae4deec013b89106c84848c0b
SHA256

fd7786f950249c6359cbbfed4ee3159654be1a376e0743690a6e8a9c469a8901
SHA512

541e20b56963c18dbae8fa0afb090ef82affb00fc0629fd2ba67cd448cb1e1b368220fb118615dabd103c10ee55e3b19a01eeea1e1a344c8caf1ef04c3e4722a
SSDEEP

24576:8kb9GXioEE6FY5fQ5emJYeXOxXzF6oHU9gH:8khGXiBE6FY1ps656tgH

Score

7^/10

Malware Config

Targets

- Target
  
  fd7786f950249c6359cbbfed4ee3159654be1a376e0743690a6e8a9c469a8901
- Size
  
  959KB
- MD5
  
  09f6910998b75b3b7cf37f0f0fc47dc1
- SHA1
  
  767a15ad8950032ae4deec013b89106c84848c0b
- SHA256
  
  fd7786f950249c6359cbbfed4ee3159654be1a376e0743690a6e8a9c469a8901
- SHA512
  
  541e20b56963c18dbae8fa0afb090ef82affb00fc0629fd2ba67cd448cb1e1b368220fb118615dabd103c10ee55e3b19a01eeea1e1a344c8caf1ef04c3e4722a
- SSDEEP
  
  24576:8kb9GXioEE6FY5fQ5emJYeXOxXzF6oHU9gH:8khGXiBE6FY1ps656tgH
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Loads dropped DLL
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2