Overview

overview

10

Static

static

10

hwid_1.exe

windows7-x64

10

hwid_1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    hwid_1.exe

  • Size

    2.2MB

  • Sample

    250107-ay84hswkbs

  • MD5

    55ba1c985f2b0393c86d043960d8c5a0

  • SHA1

    3abec7f9ea28e6563d60defc672da13b5d6e8192

  • SHA256

    f4f27716416e99523a7f18786d5035bf50052b76444c9e769a34acd152318533

  • SHA512

    28b8eb1e5929652cb54e3cbc30bd33b85639047b30b4bf99fcb5180e12f7268223bddfaed46898453199aa119067036621ff32fac9b43aa950f2e5359d8707a4

  • SSDEEP

    49152:bNJCFJXsq8AQLZY7seDNKTtBfqz8pLP1Z+tbPmuAjW2NqjeDf/0hfJ:vCFJXsqTNDIBi8pL/+NUjZqCb/0j

Score
10/10
redtigerstealer

Malware Config

Targets

    • Target

      hwid_1.exe

    • Size

      2.2MB

    • MD5

      55ba1c985f2b0393c86d043960d8c5a0

    • SHA1

      3abec7f9ea28e6563d60defc672da13b5d6e8192

    • SHA256

      f4f27716416e99523a7f18786d5035bf50052b76444c9e769a34acd152318533

    • SHA512

      28b8eb1e5929652cb54e3cbc30bd33b85639047b30b4bf99fcb5180e12f7268223bddfaed46898453199aa119067036621ff32fac9b43aa950f2e5359d8707a4

    • SSDEEP

      49152:bNJCFJXsq8AQLZY7seDNKTtBfqz8pLP1Z+tbPmuAjW2NqjeDf/0hfJ:vCFJXsqTNDIBi8pL/+NUjZqCb/0j

    Score
    10/10
    redtigerstealer

    • Detects RedTiger Stealer

      stealer

    • Redtiger family

      redtiger

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks