e1b9a5677f1e3edbb56af95c423101b469481f2077157bbbc7ed72cb873ad2d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1b9a5677f1e3edbb56af95c423101b469481f2077157bbbc7ed72cb873ad2d2
Size

2.2MB
Sample

240913-p5w5vssbpb
MD5

a9857e336440b8b63aa459969d3d5ff6
SHA1

2126b94a6d629e5fa8000b9d858bc3dd5497da2d
SHA256

e1b9a5677f1e3edbb56af95c423101b469481f2077157bbbc7ed72cb873ad2d2
SHA512

2a64c6d6569454419023e7c367d150d6252ac5465d61c0a8a9777e1de0cb01c503565d5bff0d9496e01d9c2c08feb382c4d668c6e172a4ea6a1eaaa852bbc545
SSDEEP

49152:rjq6B89ztTQcHbzPFMTtdOYwqHosBGNrtfEBDI111W0lFn:C6BStT3HvaOqIsBWrss1WgFn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1b9a5677f1e3edbb56af95c423101b469481f2077157bbbc7ed72cb873ad2d2
- Size
  
  2.2MB
- MD5
  
  a9857e336440b8b63aa459969d3d5ff6
- SHA1
  
  2126b94a6d629e5fa8000b9d858bc3dd5497da2d
- SHA256
  
  e1b9a5677f1e3edbb56af95c423101b469481f2077157bbbc7ed72cb873ad2d2
- SHA512
  
  2a64c6d6569454419023e7c367d150d6252ac5465d61c0a8a9777e1de0cb01c503565d5bff0d9496e01d9c2c08feb382c4d668c6e172a4ea6a1eaaa852bbc545
- SSDEEP
  
  49152:rjq6B89ztTQcHbzPFMTtdOYwqHosBGNrtfEBDI111W0lFn:C6BStT3HvaOqIsBWrss1WgFn
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2