4c61ceecceb38c27d2dcba4775ec272ffde59118213f4c91e38272e141a87882 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c61ceecceb38c27d2dcba4775ec272ffde59118213f4c91e38272e141a87882
Size

827KB
Sample

221004-ckqq5agfg4
MD5

36621e5ced5f71f3cd81c1a37abc4130
SHA1

c4098e443a8b3e39eeb9c4a9ffa2eadb4535e915
SHA256

4c61ceecceb38c27d2dcba4775ec272ffde59118213f4c91e38272e141a87882
SHA512

da9edd3cf524c51b1a9fda0656f4b1adfa5f1e14827e55f1b0acb0cdf08e94f35e104b0eb9f6ae51d96cd2d8cf7af9830f831c3454132cdcda37ce4e5376f671
SSDEEP

24576:UXjUmHX92n1VydDmFkKxKW0eeZd3M5fCX8rOlVePRfbpJr:cIP1GKbxKveeXMQMrnR7

Score

7^/10

Malware Config

Targets

- Target
  
  4c61ceecceb38c27d2dcba4775ec272ffde59118213f4c91e38272e141a87882
- Size
  
  827KB
- MD5
  
  36621e5ced5f71f3cd81c1a37abc4130
- SHA1
  
  c4098e443a8b3e39eeb9c4a9ffa2eadb4535e915
- SHA256
  
  4c61ceecceb38c27d2dcba4775ec272ffde59118213f4c91e38272e141a87882
- SHA512
  
  da9edd3cf524c51b1a9fda0656f4b1adfa5f1e14827e55f1b0acb0cdf08e94f35e104b0eb9f6ae51d96cd2d8cf7af9830f831c3454132cdcda37ce4e5376f671
- SSDEEP
  
  24576:UXjUmHX92n1VydDmFkKxKW0eeZd3M5fCX8rOlVePRfbpJr:cIP1GKbxKveeXMQMrnR7
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2