33e39f431eb37c915e07f666a10e58a0586e80423fa34268dfec0f096025faf7 | Triage

Sharing

General

Target

33e39f431eb37c915e07f666a10e58a0586e80423fa34268dfec0f096025faf7
Size

828KB
Sample

221126-e4nrzsca35
MD5

5d22f2ceac4cd511befd95aec963dc43
SHA1

f398c4aa745210dcd43b39bf856c232e31429e51
SHA256

33e39f431eb37c915e07f666a10e58a0586e80423fa34268dfec0f096025faf7
SHA512

92b380270629bfb6088403f33900f6d1d49964fe54bb2462afe6c50d3738f7873aa5b05386eb618f2a5aa7d36f92baa8028ac300a9ec7e78df2fd7fb7efa84d1
SSDEEP

24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  33e39f431eb37c915e07f666a10e58a0586e80423fa34268dfec0f096025faf7
- Size
  
  828KB
- MD5
  
  5d22f2ceac4cd511befd95aec963dc43
- SHA1
  
  f398c4aa745210dcd43b39bf856c232e31429e51
- SHA256
  
  33e39f431eb37c915e07f666a10e58a0586e80423fa34268dfec0f096025faf7
- SHA512
  
  92b380270629bfb6088403f33900f6d1d49964fe54bb2462afe6c50d3738f7873aa5b05386eb618f2a5aa7d36f92baa8028ac300a9ec7e78df2fd7fb7efa84d1
- SSDEEP
  
  24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2