73e45d30aa0d0f63e2bd436e047cb7a25960f5e17e3155a6ce1222c957e9ce9e | Triage

Sharing

General

Target

73e45d30aa0d0f63e2bd436e047cb7a25960f5e17e3155a6ce1222c957e9ce9e
Size

828KB
Sample

221126-eptppaec6s
MD5

c3eeee138ca5e68662a3e355e2637fc9
SHA1

26eba75b7ea2f33bb2d445fb189219958428007f
SHA256

73e45d30aa0d0f63e2bd436e047cb7a25960f5e17e3155a6ce1222c957e9ce9e
SHA512

8493dd2d07b7c3c75893ac81f03459ce239cff668ed1ab3f6fc27a01a0c2c5b506be1dcdb983218336a3ee35fb78d2ae487090bbb1a81648c93ccc583a911412
SSDEEP

24576:2DFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP6:mFhwFzPBYb02y4SA5ML

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  73e45d30aa0d0f63e2bd436e047cb7a25960f5e17e3155a6ce1222c957e9ce9e
- Size
  
  828KB
- MD5
  
  c3eeee138ca5e68662a3e355e2637fc9
- SHA1
  
  26eba75b7ea2f33bb2d445fb189219958428007f
- SHA256
  
  73e45d30aa0d0f63e2bd436e047cb7a25960f5e17e3155a6ce1222c957e9ce9e
- SHA512
  
  8493dd2d07b7c3c75893ac81f03459ce239cff668ed1ab3f6fc27a01a0c2c5b506be1dcdb983218336a3ee35fb78d2ae487090bbb1a81648c93ccc583a911412
- SSDEEP
  
  24576:2DFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP6:mFhwFzPBYb02y4SA5ML
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2