2985c4920ef1aa0bab69e6397b5ce943a53d82a49642dda20d470453275ec7d0 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

winrar-x32-622es.exe

windows10-2004-x64

8

Resubmissions

22-08-2024 16:37

240822-t5an3sxclb 8

22-08-2024 16:36

240822-t4ftpszbrp 3

Sharing

General

Target

winrar-x32-622es.exe
Size

3.3MB
Sample

240822-t5an3sxclb
MD5

84cd0e26bf4ad3e150e80bd10309dc5d
SHA1

42c65db74fa0a13f1e068811201db15b5a312d6e
SHA256

2985c4920ef1aa0bab69e6397b5ce943a53d82a49642dda20d470453275ec7d0
SHA512

7148757c24f1ffc5afc364e6d7ee09b4c100168af2cf4c87057eec8b81e3ae5913f6080afd50404e10c51122f388eae602328c05257277f74a605f8d8e50c900
SSDEEP

98304:qWhrDOBfKBwAf/sLdm5ZjA/nI+mod933b/kWlEXm8:/pULdm5K/I+nb/kWa/

Score

8^/10

defense_evasion discovery

Static task

static1

Behavioral task

behavioral1

Sample

winrar-x32-622es.exe

Resource

win10v2004-20240802-en

defense_evasion discovery

windows10-2004-x64

23 signatures

150 seconds

Malware Config

Targets

- Target
  
  winrar-x32-622es.exe
- Size
  
  3.3MB
- MD5
  
  84cd0e26bf4ad3e150e80bd10309dc5d
- SHA1
  
  42c65db74fa0a13f1e068811201db15b5a312d6e
- SHA256
  
  2985c4920ef1aa0bab69e6397b5ce943a53d82a49642dda20d470453275ec7d0
- SHA512
  
  7148757c24f1ffc5afc364e6d7ee09b4c100168af2cf4c87057eec8b81e3ae5913f6080afd50404e10c51122f388eae602328c05257277f74a605f8d8e50c900
- SSDEEP
  
  98304:qWhrDOBfKBwAf/sLdm5ZjA/nI+mod933b/kWlEXm8:/pULdm5K/I+nb/kWa/
Score

8^/10

defense_evasion discovery
- Drops file in Drivers directory
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Impair Defenses: Safe Mode Boot
  defense_evasion
- Downloads MZ/PE file
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Safe Mode Boot

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy