af0726cb372d29ad54dd34f595be34833989c375fb5af3c4c11d52ef0aed4f8f | Triage

Sharing

General

Target

af0726cb372d29ad54dd34f595be34833989c375fb5af3c4c11d52ef0aed4f8f
Size

885KB
Sample

221204-rfxffafb36
MD5

425225b9f0c73211687d0a5bf049006c
SHA1

06f3be1e874e041fdf9a432f0b9c3fdcca670958
SHA256

af0726cb372d29ad54dd34f595be34833989c375fb5af3c4c11d52ef0aed4f8f
SHA512

a6b067ba31708c7ea075e7631aef4cbb17b30c250408e6d53fd85b108d71fe618ab81a840f103d29261dee86b91c229cc2558d82476d146de3bd0829951f1a2d
SSDEEP

24576:BuvYVsT1lnTPopmmyBgCl3T0lVz6odQ6K:UvYkRTE3YcbQB

Score

7^/10

Malware Config

Targets

- Target
  
  af0726cb372d29ad54dd34f595be34833989c375fb5af3c4c11d52ef0aed4f8f
- Size
  
  885KB
- MD5
  
  425225b9f0c73211687d0a5bf049006c
- SHA1
  
  06f3be1e874e041fdf9a432f0b9c3fdcca670958
- SHA256
  
  af0726cb372d29ad54dd34f595be34833989c375fb5af3c4c11d52ef0aed4f8f
- SHA512
  
  a6b067ba31708c7ea075e7631aef4cbb17b30c250408e6d53fd85b108d71fe618ab81a840f103d29261dee86b91c229cc2558d82476d146de3bd0829951f1a2d
- SSDEEP
  
  24576:BuvYVsT1lnTPopmmyBgCl3T0lVz6odQ6K:UvYkRTE3YcbQB
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2