383fd7a41d60229eb0a7d3980e46c8f4b2be7324fca239bb43205b92d53a1ae1 | Triage

Sharing

General

Target

383fd7a41d60229eb0a7d3980e46c8f4b2be7324fca239bb43205b92d53a1ae1
Size

828KB
Sample

221126-e32x8abh94
MD5

12095d135e8f64e8b6361e591bda5b93
SHA1

ae4e98de2e227383b09c7c95897b2bb66e0b5a16
SHA256

383fd7a41d60229eb0a7d3980e46c8f4b2be7324fca239bb43205b92d53a1ae1
SHA512

ab963161748821a31002777695ae0c3f60739ee7c0446feb143be0f0cc8cbd0e67703417efe5aff43d8aa990ef6eb7e57496fede6ca19dc691b7ab15e452827d
SSDEEP

24576:/DFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPw:7FhwFzPBYb02y4SA5MR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  383fd7a41d60229eb0a7d3980e46c8f4b2be7324fca239bb43205b92d53a1ae1
- Size
  
  828KB
- MD5
  
  12095d135e8f64e8b6361e591bda5b93
- SHA1
  
  ae4e98de2e227383b09c7c95897b2bb66e0b5a16
- SHA256
  
  383fd7a41d60229eb0a7d3980e46c8f4b2be7324fca239bb43205b92d53a1ae1
- SHA512
  
  ab963161748821a31002777695ae0c3f60739ee7c0446feb143be0f0cc8cbd0e67703417efe5aff43d8aa990ef6eb7e57496fede6ca19dc691b7ab15e452827d
- SSDEEP
  
  24576:/DFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwPw:7FhwFzPBYb02y4SA5MR
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2