4fbf57e19c72ff47ba77c65202e3c761bbc2ca8a87f4e310dc2b0f6e0764e602 | Triage

Sharing

General

Target

4fbf57e19c72ff47ba77c65202e3c761bbc2ca8a87f4e310dc2b0f6e0764e602
Size

828KB
Sample

221126-eya9pseh2t
MD5

c57c8b6dd22e07642ac8de792e05e355
SHA1

e0aa71657ec3c30e955c7a589e3f31cea8be80b6
SHA256

4fbf57e19c72ff47ba77c65202e3c761bbc2ca8a87f4e310dc2b0f6e0764e602
SHA512

00acdac1d0e4f6ab9a9a0440e8436f0a365656ccd32a1232371b11c9cf0514e670973e2f708fc23f21756e5281cb4ae3716ecf5dc88fa54c6462bd109b2d21c2
SSDEEP

24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fbf57e19c72ff47ba77c65202e3c761bbc2ca8a87f4e310dc2b0f6e0764e602
- Size
  
  828KB
- MD5
  
  c57c8b6dd22e07642ac8de792e05e355
- SHA1
  
  e0aa71657ec3c30e955c7a589e3f31cea8be80b6
- SHA256
  
  4fbf57e19c72ff47ba77c65202e3c761bbc2ca8a87f4e310dc2b0f6e0764e602
- SHA512
  
  00acdac1d0e4f6ab9a9a0440e8436f0a365656ccd32a1232371b11c9cf0514e670973e2f708fc23f21756e5281cb4ae3716ecf5dc88fa54c6462bd109b2d21c2
- SSDEEP
  
  24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2