General

  • Target

    85432a8735c8dd5a4a0cc1a089ebde49f576f64eb66b305e7e55f40d88d27363N

  • Size

    5.0MB

  • Sample

    241109-he326azdjk

  • MD5

    288c35011aec8320e4210aadb880fe50

  • SHA1

    75d2e6e045685e9ab85ed509ea79ecbc83bb4821

  • SHA256

    85432a8735c8dd5a4a0cc1a089ebde49f576f64eb66b305e7e55f40d88d27363

  • SHA512

    516cf0dd20a6d7262fec4b421319be86b38050cdbe99a5ac597db8ba1ecebeef82fda45e049134a044c8d2b737987fa450db45648fd1af428df8f63421319434

  • SSDEEP

    98304:Y5qeVuJRV160+8aR5cOp+eiII/pD5pqUJbdg6+eLMOq6A9x:YZVuRYxDu+G+6JLi6A9x

Score
7/10

Malware Config

Targets

    • Target

      85432a8735c8dd5a4a0cc1a089ebde49f576f64eb66b305e7e55f40d88d27363N

    • Size

      5.0MB

    • MD5

      288c35011aec8320e4210aadb880fe50

    • SHA1

      75d2e6e045685e9ab85ed509ea79ecbc83bb4821

    • SHA256

      85432a8735c8dd5a4a0cc1a089ebde49f576f64eb66b305e7e55f40d88d27363

    • SHA512

      516cf0dd20a6d7262fec4b421319be86b38050cdbe99a5ac597db8ba1ecebeef82fda45e049134a044c8d2b737987fa450db45648fd1af428df8f63421319434

    • SSDEEP

      98304:Y5qeVuJRV160+8aR5cOp+eiII/pD5pqUJbdg6+eLMOq6A9x:YZVuRYxDu+G+6JLi6A9x

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks