a70e42a46051c19986339a6b0fd70cb1814a0980c4df1cae752f325ca06810b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a70e42a46051c19986339a6b0fd70cb1814a0980c4df1cae752f325ca06810b1
Size

5.7MB
Sample

231012-rgtqyafe92
MD5

dcea650804c5d1d4b96de2d8bb6ba066
SHA1

8dd2d7cf628d30a609a2cf3b3598d22263259b31
SHA256

a70e42a46051c19986339a6b0fd70cb1814a0980c4df1cae752f325ca06810b1
SHA512

dd6df92ad9121ec8b5ae05b65a1665a385272c0eee37fe9fa0bcfe07cb032eae003b665f4d7e3d44db6b1df5375976a430d80ca13eb2987d0367d60b0bb81516
SSDEEP

98304:edHMC+By0AOzWeGlPCk2IabgwxXQ6lXtGscl5M1QN7pA2q7NOLKkV5ixpP:e/SACkCkyhXQ6ldGsTQN7pD+kjinP

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  a70e42a46051c19986339a6b0fd70cb1814a0980c4df1cae752f325ca06810b1
- Size
  
  5.7MB
- MD5
  
  dcea650804c5d1d4b96de2d8bb6ba066
- SHA1
  
  8dd2d7cf628d30a609a2cf3b3598d22263259b31
- SHA256
  
  a70e42a46051c19986339a6b0fd70cb1814a0980c4df1cae752f325ca06810b1
- SHA512
  
  dd6df92ad9121ec8b5ae05b65a1665a385272c0eee37fe9fa0bcfe07cb032eae003b665f4d7e3d44db6b1df5375976a430d80ca13eb2987d0367d60b0bb81516
- SSDEEP
  
  98304:edHMC+By0AOzWeGlPCk2IabgwxXQ6lXtGscl5M1QN7pA2q7NOLKkV5ixpP:e/SACkCkyhXQ6ldGsTQN7pD+kjinP
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2