c628f3ac02c9547cd87dc47589a1845eb2069bd9535b4ec69f8bdd6a7c4afa92 | Triage

Sharing

General

Target

c628f3ac02c9547cd87dc47589a1845eb2069bd9535b4ec69f8bdd6a7c4afa92
Size

6.5MB
Sample

240625-cnxnvaydrq
MD5

8cc6b699545ed0e9c006d88645a4d5f4
SHA1

ec846c1b9d76cd26666efe9bb6014c08f7c09cee
SHA256

c628f3ac02c9547cd87dc47589a1845eb2069bd9535b4ec69f8bdd6a7c4afa92
SHA512

6b34350acb34e3949b209490339dfd982fa11bc4124c1fb8860f582c9541311e42edcc371e50aaf9ef7fa9d33d8881118834c1556b382559f20e84729179491c
SSDEEP

196608:EYK8jPXnXhcf5PrChU01KOVf3lskmjuveRf:ZjP3X2Pry1KQ11mi4

Score

8^/10

Malware Config

Targets

- Target
  
  c628f3ac02c9547cd87dc47589a1845eb2069bd9535b4ec69f8bdd6a7c4afa92
- Size
  
  6.5MB
- MD5
  
  8cc6b699545ed0e9c006d88645a4d5f4
- SHA1
  
  ec846c1b9d76cd26666efe9bb6014c08f7c09cee
- SHA256
  
  c628f3ac02c9547cd87dc47589a1845eb2069bd9535b4ec69f8bdd6a7c4afa92
- SHA512
  
  6b34350acb34e3949b209490339dfd982fa11bc4124c1fb8860f582c9541311e42edcc371e50aaf9ef7fa9d33d8881118834c1556b382559f20e84729179491c
- SSDEEP
  
  196608:EYK8jPXnXhcf5PrChU01KOVf3lskmjuveRf:ZjP3X2Pry1KQ11mi4
Score

8^/10
- Blocklisted process makes network request
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2