3e22c8457ff24e4ca79538f6f06ca61b7529827e201744f27070e3f0ea9e97c9 | Triage

Sharing

General

Target

3e22c8457ff24e4ca79538f6f06ca61b7529827e201744f27070e3f0ea9e97c9
Size

1.1MB
Sample

221126-3w3g6shd8s
MD5

3fcabcb87e71200e9859ce7fe87c3900
SHA1

60dac76ee9143e6adc461ba9c6a05ef4c2f44bc4
SHA256

3e22c8457ff24e4ca79538f6f06ca61b7529827e201744f27070e3f0ea9e97c9
SHA512

dc129b5c0ac2f99181d3e4adb72e7fb0b8b7a482aefe035dd57aa5799793bd723c40e8e3d8cd46b3a1774b3e4cffe4ea00750d391b2547251917d18712876ef1
SSDEEP

24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:TWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3e22c8457ff24e4ca79538f6f06ca61b7529827e201744f27070e3f0ea9e97c9
- Size
  
  1.1MB
- MD5
  
  3fcabcb87e71200e9859ce7fe87c3900
- SHA1
  
  60dac76ee9143e6adc461ba9c6a05ef4c2f44bc4
- SHA256
  
  3e22c8457ff24e4ca79538f6f06ca61b7529827e201744f27070e3f0ea9e97c9
- SHA512
  
  dc129b5c0ac2f99181d3e4adb72e7fb0b8b7a482aefe035dd57aa5799793bd723c40e8e3d8cd46b3a1774b3e4cffe4ea00750d391b2547251917d18712876ef1
- SSDEEP
  
  24576:T8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:TWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2