738722f70006b90900ebbea3808a330ac312f75c958e780ea45f2f619ecc750e | Triage

Sharing

General

Target

738722f70006b90900ebbea3808a330ac312f75c958e780ea45f2f619ecc750e
Size

933KB
Sample

221126-epycwaec6x
MD5

5223395d7f620be5ac4d860e50903a4a
SHA1

2b74d3ec57d108defa39a2e4fb8d746aa680ae55
SHA256

738722f70006b90900ebbea3808a330ac312f75c958e780ea45f2f619ecc750e
SHA512

d754544c2f8bb0cb7148a52308adf7a53ee00b3c0734a6bed04643f963909355ade3608c4431a1aa6f9948427a9a41d2419ecc170acdafb922a5899040fd8160
SSDEEP

24576:VlosaY5besRGLYVlnk6VY06tFlLomp6LWS/8c/mr:3osaY5beZLsr+0Sl6LWQ8m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  738722f70006b90900ebbea3808a330ac312f75c958e780ea45f2f619ecc750e
- Size
  
  933KB
- MD5
  
  5223395d7f620be5ac4d860e50903a4a
- SHA1
  
  2b74d3ec57d108defa39a2e4fb8d746aa680ae55
- SHA256
  
  738722f70006b90900ebbea3808a330ac312f75c958e780ea45f2f619ecc750e
- SHA512
  
  d754544c2f8bb0cb7148a52308adf7a53ee00b3c0734a6bed04643f963909355ade3608c4431a1aa6f9948427a9a41d2419ecc170acdafb922a5899040fd8160
- SSDEEP
  
  24576:VlosaY5besRGLYVlnk6VY06tFlLomp6LWS/8c/mr:3osaY5beZLsr+0Sl6LWQ8m
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2