3635d5d18fbce9a3700361b7bcb1a802e0825773ad77e8017a876d506e7b537a | Triage

Sharing

General

Target

3635d5d18fbce9a3700361b7bcb1a802e0825773ad77e8017a876d506e7b537a
Size

828KB
Sample

221126-e4dxsaca25
MD5

d701b53d186de08eb5320e3cd6d04e00
SHA1

1081a6f568de9724acde4f97e197072e44f6e118
SHA256

3635d5d18fbce9a3700361b7bcb1a802e0825773ad77e8017a876d506e7b537a
SHA512

05551e078b36dabe49d8f80cd1625ef05a268ab80ab98bc03d708174d468b5082f84eb34efdc8eea95385a9237b66c04b8482984cb2f5611ce46d639353e87c0
SSDEEP

24576:ADFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP/:cFhwFzPBYb02y4SA5MG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3635d5d18fbce9a3700361b7bcb1a802e0825773ad77e8017a876d506e7b537a
- Size
  
  828KB
- MD5
  
  d701b53d186de08eb5320e3cd6d04e00
- SHA1
  
  1081a6f568de9724acde4f97e197072e44f6e118
- SHA256
  
  3635d5d18fbce9a3700361b7bcb1a802e0825773ad77e8017a876d506e7b537a
- SHA512
  
  05551e078b36dabe49d8f80cd1625ef05a268ab80ab98bc03d708174d468b5082f84eb34efdc8eea95385a9237b66c04b8482984cb2f5611ce46d639353e87c0
- SSDEEP
  
  24576:ADFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP/:cFhwFzPBYb02y4SA5MG
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2