8ed33f461a2bf578e406db86516d3a8debfe751fcad5f395f11480939bdcc208 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ed33f461a2bf578e406db86516d3a8debfe751fcad5f395f11480939bdcc208
Size

11.6MB
Sample

240625-jkgxjszgjp
MD5

6f74729523ac9d01dabe31254b7344b5
SHA1

bcc1938e6f7c210ecddf394b20788e0260969e34
SHA256

8ed33f461a2bf578e406db86516d3a8debfe751fcad5f395f11480939bdcc208
SHA512

0ef217e10fc8c07018a7f4e45a3988a8bef9f0c59ca99d1f1e90285d751e66a4c6b1d746a9b9b7adaf10d01d49df288b64d8e5af030b13670a42f2eec8d34ef0
SSDEEP

196608:mZzrENt07+s5HLc/mt190kI3yp29eVJO5PKMD+cpvJ/4H3nmghWoa/fsysMF4JD0:mZVzcuj2hirJPMFgXnU7sElZy

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  8ed33f461a2bf578e406db86516d3a8debfe751fcad5f395f11480939bdcc208
- Size
  
  11.6MB
- MD5
  
  6f74729523ac9d01dabe31254b7344b5
- SHA1
  
  bcc1938e6f7c210ecddf394b20788e0260969e34
- SHA256
  
  8ed33f461a2bf578e406db86516d3a8debfe751fcad5f395f11480939bdcc208
- SHA512
  
  0ef217e10fc8c07018a7f4e45a3988a8bef9f0c59ca99d1f1e90285d751e66a4c6b1d746a9b9b7adaf10d01d49df288b64d8e5af030b13670a42f2eec8d34ef0
- SSDEEP
  
  196608:mZzrENt07+s5HLc/mt190kI3yp29eVJO5PKMD+cpvJ/4H3nmghWoa/fsysMF4JD0:mZVzcuj2hirJPMFgXnU7sElZy
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2