6d65a33d9b2fbb32b52d9d9cb6d9504b664aef4041937ad2c6f54e795d847139 | Triage

Sharing

General

Target

6d65a33d9b2fbb32b52d9d9cb6d9504b664aef4041937ad2c6f54e795d847139
Size

8.1MB
Sample

240526-hp9mpabe72
MD5

93041dc965baae2994df1676f7b01ebd
SHA1

fcabf1cbf6aa99908a9b061f83c269befc3bb276
SHA256

6d65a33d9b2fbb32b52d9d9cb6d9504b664aef4041937ad2c6f54e795d847139
SHA512

8336edeca0ee32e923dc92f6ebdf3149277ae136e715187419b37b80083c8f9014a8167a8f36a372c8dd4bfe6179b9a26bea24523a4b76b869b370173673c68a
SSDEEP

196608:y4HKDQBKkXy+XVt815j5tDobSUFQVwRfRqJ1ay0cjZGr3nrEn:yaK0BK+wvj5t0ZFQGRfRzf7rG

Score

7^/10

Malware Config

Targets

- Target
  
  6d65a33d9b2fbb32b52d9d9cb6d9504b664aef4041937ad2c6f54e795d847139
- Size
  
  8.1MB
- MD5
  
  93041dc965baae2994df1676f7b01ebd
- SHA1
  
  fcabf1cbf6aa99908a9b061f83c269befc3bb276
- SHA256
  
  6d65a33d9b2fbb32b52d9d9cb6d9504b664aef4041937ad2c6f54e795d847139
- SHA512
  
  8336edeca0ee32e923dc92f6ebdf3149277ae136e715187419b37b80083c8f9014a8167a8f36a372c8dd4bfe6179b9a26bea24523a4b76b869b370173673c68a
- SSDEEP
  
  196608:y4HKDQBKkXy+XVt815j5tDobSUFQVwRfRqJ1ay0cjZGr3nrEn:yaK0BK+wvj5t0ZFQGRfRzf7rG
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2