3f46fe8c2ce13efd3c6b6a612bee29b8a1c40b3d564f75e5ba7a6ed68b2488a1 | Triage

Sharing

General

Target

3f46fe8c2ce13efd3c6b6a612bee29b8a1c40b3d564f75e5ba7a6ed68b2488a1
Size

828KB
Sample

221126-e2y5yabh43
MD5

c3017c1ae7d1f6122192d944100d7672
SHA1

9323d618275e444d8a285a4d83ba2150f94a6822
SHA256

3f46fe8c2ce13efd3c6b6a612bee29b8a1c40b3d564f75e5ba7a6ed68b2488a1
SHA512

bba8e929e94ef4c1b7ea8db31c5fa8c899fd76b72feb90150c90def712754b3a5450cd9252e96963a11f09d046b9c1d112bb4a73080e694c9c90555f6928aa1c
SSDEEP

24576:mDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:WFhwFzPBYb02y4SA5M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3f46fe8c2ce13efd3c6b6a612bee29b8a1c40b3d564f75e5ba7a6ed68b2488a1
- Size
  
  828KB
- MD5
  
  c3017c1ae7d1f6122192d944100d7672
- SHA1
  
  9323d618275e444d8a285a4d83ba2150f94a6822
- SHA256
  
  3f46fe8c2ce13efd3c6b6a612bee29b8a1c40b3d564f75e5ba7a6ed68b2488a1
- SHA512
  
  bba8e929e94ef4c1b7ea8db31c5fa8c899fd76b72feb90150c90def712754b3a5450cd9252e96963a11f09d046b9c1d112bb4a73080e694c9c90555f6928aa1c
- SSDEEP
  
  24576:mDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:WFhwFzPBYb02y4SA5M
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2