1042f26a971b9bff634f9fcbb36b7668b2c6984b13f98d438c521af1a1d8af10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11dc92afca9027448f8d31f5d4545c4a
Size

886KB
Sample

231230-h1781ahchn
MD5

11dc92afca9027448f8d31f5d4545c4a
SHA1

2542126dfaff8196dfc18a0bb8ec8fe9e3a97aab
SHA256

1042f26a971b9bff634f9fcbb36b7668b2c6984b13f98d438c521af1a1d8af10
SHA512

c01a8d0b4e27cf93592a14025ba2a3bb9c09abdf12acf74eb4835a86854eeacf3845946b483624fe507cfdfdd905f33b1c7b1e08fb1d4068a441553d93cabeab
SSDEEP

24576:zuvYVsT1lnTPopmmyBgCl3T0lVz6odQ6l:KvYkRTE3YcbQq

Score

7^/10

Malware Config

Targets

- Target
  
  11dc92afca9027448f8d31f5d4545c4a
- Size
  
  886KB
- MD5
  
  11dc92afca9027448f8d31f5d4545c4a
- SHA1
  
  2542126dfaff8196dfc18a0bb8ec8fe9e3a97aab
- SHA256
  
  1042f26a971b9bff634f9fcbb36b7668b2c6984b13f98d438c521af1a1d8af10
- SHA512
  
  c01a8d0b4e27cf93592a14025ba2a3bb9c09abdf12acf74eb4835a86854eeacf3845946b483624fe507cfdfdd905f33b1c7b1e08fb1d4068a441553d93cabeab
- SSDEEP
  
  24576:zuvYVsT1lnTPopmmyBgCl3T0lVz6odQ6l:KvYkRTE3YcbQq
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Loads dropped DLL
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2