1236eb1f33198c7caf231f4c852f30674dd6e4b60dc4925076f46e36931fe4f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4babb11214421a77adf9d2ffccab97a9
Size

1.1MB
Sample

240108-rp1t8abfbr
MD5

4babb11214421a77adf9d2ffccab97a9
SHA1

36777b9cb9027907474fc9c5ba5b228af3dea301
SHA256

1236eb1f33198c7caf231f4c852f30674dd6e4b60dc4925076f46e36931fe4f9
SHA512

7029ea5430fbb259ecb2c965b56c341ea1ed54d80ab24d4b3ca7d9224de38c00184bd9869387a241dd9d041707d11267d550b228e6c276196486e03ca2a171ad
SSDEEP

12288:PuklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHR:P3jl2WzbZL6gEAqEVmA7x6FAncQ

Score

7^/10

Malware Config

Targets

- Target
  
  4babb11214421a77adf9d2ffccab97a9
- Size
  
  1.1MB
- MD5
  
  4babb11214421a77adf9d2ffccab97a9
- SHA1
  
  36777b9cb9027907474fc9c5ba5b228af3dea301
- SHA256
  
  1236eb1f33198c7caf231f4c852f30674dd6e4b60dc4925076f46e36931fe4f9
- SHA512
  
  7029ea5430fbb259ecb2c965b56c341ea1ed54d80ab24d4b3ca7d9224de38c00184bd9869387a241dd9d041707d11267d550b228e6c276196486e03ca2a171ad
- SSDEEP
  
  12288:PuklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHR:P3jl2WzbZL6gEAqEVmA7x6FAncQ
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2