b2277590ac9be8b1b33033c9097b890011946c32d31dbc0366f25e5ad5409f22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2277590ac9be8b1b33033c9097b890011946c32d31dbc0366f25e5ad5409f22
Size

2.3MB
Sample

221203-hzp12ahf9t
MD5

64ceedbf6f570af0fc4ff177bf4950d8
SHA1

c297d371a9000606795f022346770142108df9b0
SHA256

b2277590ac9be8b1b33033c9097b890011946c32d31dbc0366f25e5ad5409f22
SHA512

72c66afb720aaba12d9834555d73f3e8e7bd17e6c5fa2444ef4d9cd354c9fdcdd8bee4cd487f557bc922304ceb28fc06bff1ed906db23b4cc45ce428a720d81d
SSDEEP

1536:CxHLqd54/j8NNv99kRSvyJZfxvwXcKlMYuiG9:CxrqU/j8Tv/gS2ZpvwMKlMkG9

Score

8^/10

Malware Config

Targets

- Target
  
  b2277590ac9be8b1b33033c9097b890011946c32d31dbc0366f25e5ad5409f22
- Size
  
  2.3MB
- MD5
  
  64ceedbf6f570af0fc4ff177bf4950d8
- SHA1
  
  c297d371a9000606795f022346770142108df9b0
- SHA256
  
  b2277590ac9be8b1b33033c9097b890011946c32d31dbc0366f25e5ad5409f22
- SHA512
  
  72c66afb720aaba12d9834555d73f3e8e7bd17e6c5fa2444ef4d9cd354c9fdcdd8bee4cd487f557bc922304ceb28fc06bff1ed906db23b4cc45ce428a720d81d
- SSDEEP
  
  1536:CxHLqd54/j8NNv99kRSvyJZfxvwXcKlMYuiG9:CxrqU/j8Tv/gS2ZpvwMKlMkG9
Score

8^/10
- Executes dropped EXE
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2