c864f769a146493f00dd2b33cfa4159abe7e0b34613b4b4256cf46f606d719dc | Triage

Sharing

General

Target

c864f769a146493f00dd2b33cfa4159abe7e0b34613b4b4256cf46f606d719dc
Size

5.7MB
Sample

221026-xfcnxsgfa7
MD5

150c514af94c62f7ce0c72b942ceecda
SHA1

0e4af543b781456af185a6491b00c961926fb988
SHA256

c864f769a146493f00dd2b33cfa4159abe7e0b34613b4b4256cf46f606d719dc
SHA512

b0f9c0b2c3b8deca96bdd922da4519cb4352c3ff430b008df53a0001e721b691c9e5b5577c21728da8e97534a2dcddfa4a692e85882e5940365f1cc233872e70
SSDEEP

98304:ysFpQFP3a3evuuy1sFi1gsRRM/cQjaQGbc+tPet+g1Bew79roK:ysEo3uyL1l7Mclfbc+tPet+g14w7B

Score

7^/10

Malware Config

Targets

- Target
  
  c864f769a146493f00dd2b33cfa4159abe7e0b34613b4b4256cf46f606d719dc
- Size
  
  5.7MB
- MD5
  
  150c514af94c62f7ce0c72b942ceecda
- SHA1
  
  0e4af543b781456af185a6491b00c961926fb988
- SHA256
  
  c864f769a146493f00dd2b33cfa4159abe7e0b34613b4b4256cf46f606d719dc
- SHA512
  
  b0f9c0b2c3b8deca96bdd922da4519cb4352c3ff430b008df53a0001e721b691c9e5b5577c21728da8e97534a2dcddfa4a692e85882e5940365f1cc233872e70
- SSDEEP
  
  98304:ysFpQFP3a3evuuy1sFi1gsRRM/cQjaQGbc+tPet+g1Bew79roK:ysEo3uyL1l7Mclfbc+tPet+g14w7B
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2