8a530420a3d2e6d2910c164d85a0cf9e0adde5b28da543f3ec21ba40268ec4cf | Triage

Sharing

General

Target

8a530420a3d2e6d2910c164d85a0cf9e0adde5b28da543f3ec21ba40268ec4cf
Size

6.2MB
Sample

231012-neyekahc84
MD5

3fe6a04014c40e700a66773f70013c3e
SHA1

6bdfe1570fb1e96054310fab0373cee066dd4302
SHA256

8a530420a3d2e6d2910c164d85a0cf9e0adde5b28da543f3ec21ba40268ec4cf
SHA512

405f556fa9bd177e1120982bf816b8eaae0310311a547c54c80991eae9d7ec5a4df64e48a2d2941973c0a7dc2bff16fac2e7e61c2b1824a37bcf49d58f5a47f9
SSDEEP

98304:qXbfFQVW/fhA398yfX21CvlMZVWJUSmNnS6:6b2M/NyfX2EvKZVWJUSmNn/

Score

7^/10

Malware Config

Targets

- Target
  
  8a530420a3d2e6d2910c164d85a0cf9e0adde5b28da543f3ec21ba40268ec4cf
- Size
  
  6.2MB
- MD5
  
  3fe6a04014c40e700a66773f70013c3e
- SHA1
  
  6bdfe1570fb1e96054310fab0373cee066dd4302
- SHA256
  
  8a530420a3d2e6d2910c164d85a0cf9e0adde5b28da543f3ec21ba40268ec4cf
- SHA512
  
  405f556fa9bd177e1120982bf816b8eaae0310311a547c54c80991eae9d7ec5a4df64e48a2d2941973c0a7dc2bff16fac2e7e61c2b1824a37bcf49d58f5a47f9
- SSDEEP
  
  98304:qXbfFQVW/fhA398yfX21CvlMZVWJUSmNnS6:6b2M/NyfX2EvKZVWJUSmNn/
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2