aefe8b67e2bebfdf26cbace02eb17c0682c0fb43563793978f8d83b1d475cd37 | Triage

Sharing

General

Target

aefe8b67e2bebfdf26cbace02eb17c0682c0fb43563793978f8d83b1d475cd37
Size

146KB
Sample

221205-vjzazshc37
MD5

653ac6e268e0838869667f2847178c42
SHA1

93d541cecac8eabed3e06201fc41afd6be2569cb
SHA256

aefe8b67e2bebfdf26cbace02eb17c0682c0fb43563793978f8d83b1d475cd37
SHA512

8dd5b66740e2943418f35c9281fe3b4951efcc0bf78fdd87cd8349bd9a64a55de9fcc5e5d8b90f99e24994364b403a44a8895420bb6b740ddabf81d6b67ed277
SSDEEP

3072:PRMcPDaFnfQOvI+2CPeQUyhnUnY0McqPQ:PRVD44snUnY0J2

Score

7^/10

Malware Config

Targets

- Target
  
  aefe8b67e2bebfdf26cbace02eb17c0682c0fb43563793978f8d83b1d475cd37
- Size
  
  146KB
- MD5
  
  653ac6e268e0838869667f2847178c42
- SHA1
  
  93d541cecac8eabed3e06201fc41afd6be2569cb
- SHA256
  
  aefe8b67e2bebfdf26cbace02eb17c0682c0fb43563793978f8d83b1d475cd37
- SHA512
  
  8dd5b66740e2943418f35c9281fe3b4951efcc0bf78fdd87cd8349bd9a64a55de9fcc5e5d8b90f99e24994364b403a44a8895420bb6b740ddabf81d6b67ed277
- SSDEEP
  
  3072:PRMcPDaFnfQOvI+2CPeQUyhnUnY0McqPQ:PRVD44snUnY0J2
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2