fce9d74fabfe9ff57f2ecd246f858c024b2cda017bdc3630cf9d13f39138852f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fce9d74fabfe9ff57f2ecd246f858c024b2cda017bdc3630cf9d13f39138852f
Size

1.2MB
Sample

221126-18dcpsda2y
MD5

73098e2aa4a72b9a3be1c5ac423419ac
SHA1

7a04a32b18030082d2b488b689c03a3e53a255e7
SHA256

fce9d74fabfe9ff57f2ecd246f858c024b2cda017bdc3630cf9d13f39138852f
SHA512

9a6ec7521b341bfd97bd127f9b2c02102d9e973e8894f65c89e1b8a2b75a5c7cf8511dd486290ab234efd9fb694d5920096307ce4cb3c63c91892da55a501480
SSDEEP

24576:LCStj/R+pud1sQN6TgXxruXQNjj43/qq:tr0C/5XIANvM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fce9d74fabfe9ff57f2ecd246f858c024b2cda017bdc3630cf9d13f39138852f
- Size
  
  1.2MB
- MD5
  
  73098e2aa4a72b9a3be1c5ac423419ac
- SHA1
  
  7a04a32b18030082d2b488b689c03a3e53a255e7
- SHA256
  
  fce9d74fabfe9ff57f2ecd246f858c024b2cda017bdc3630cf9d13f39138852f
- SHA512
  
  9a6ec7521b341bfd97bd127f9b2c02102d9e973e8894f65c89e1b8a2b75a5c7cf8511dd486290ab234efd9fb694d5920096307ce4cb3c63c91892da55a501480
- SSDEEP
  
  24576:LCStj/R+pud1sQN6TgXxruXQNjj43/qq:tr0C/5XIANvM
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2