a2d21c70049c3940be27a8f60b4e00fa34adcde86a8fa2eef9cac2650d196705 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2d21c70049c3940be27a8f60b4e00fa34adcde86a8fa2eef9cac2650d196705
Size

925KB
Sample

221201-y2zw1sbe6t
MD5

63d7ba85b23d172263a91172d3966a58
SHA1

f80644e5a97456f62dfff44fb9f0cc7565f06507
SHA256

a2d21c70049c3940be27a8f60b4e00fa34adcde86a8fa2eef9cac2650d196705
SHA512

d217bd6992a7c9b139c36245a3069b5cf5ba807fc06a2895fff21344ab14322caaa9583b6da18cda5773b238c51115f694240763b59380fb0c03108639dfceb6
SSDEEP

24576:Q7onZBPiVnMHSnKwjplxk6umW4g5cN/Rd9n:NnvPiVMy7j66umW41

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  a2d21c70049c3940be27a8f60b4e00fa34adcde86a8fa2eef9cac2650d196705
- Size
  
  925KB
- MD5
  
  63d7ba85b23d172263a91172d3966a58
- SHA1
  
  f80644e5a97456f62dfff44fb9f0cc7565f06507
- SHA256
  
  a2d21c70049c3940be27a8f60b4e00fa34adcde86a8fa2eef9cac2650d196705
- SHA512
  
  d217bd6992a7c9b139c36245a3069b5cf5ba807fc06a2895fff21344ab14322caaa9583b6da18cda5773b238c51115f694240763b59380fb0c03108639dfceb6
- SSDEEP
  
  24576:Q7onZBPiVnMHSnKwjplxk6umW4g5cN/Rd9n:NnvPiVMy7j66umW41
Score

9^/10

evasion
- Checks for common network interception software
  Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
  evasion
- Enumerates VirtualBox registry keys
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Software Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2