4e776f982532a3077da144dc8ab68aa0c01cca92b8f8d3062e37941e7fcb81a3 | Triage

Sharing

General

Target

4e776f982532a3077da144dc8ab68aa0c01cca92b8f8d3062e37941e7fcb81a3
Size

828KB
Sample

221126-eyjwvaeh31
MD5

3b31913f110cf36119b8d544ca0dec74
SHA1

8f3ba7dea8806370936351e8c679d1d1c935d27d
SHA256

4e776f982532a3077da144dc8ab68aa0c01cca92b8f8d3062e37941e7fcb81a3
SHA512

e6de3ac65371ac18896f17aa4ab6a7ea4e13a90a2db5bfeaac0ce343f45f5a22702318af5a25752a5034fa8e2022bb620fe6bcb823bfe0a0ccf5e39345d03110
SSDEEP

24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4e776f982532a3077da144dc8ab68aa0c01cca92b8f8d3062e37941e7fcb81a3
- Size
  
  828KB
- MD5
  
  3b31913f110cf36119b8d544ca0dec74
- SHA1
  
  8f3ba7dea8806370936351e8c679d1d1c935d27d
- SHA256
  
  4e776f982532a3077da144dc8ab68aa0c01cca92b8f8d3062e37941e7fcb81a3
- SHA512
  
  e6de3ac65371ac18896f17aa4ab6a7ea4e13a90a2db5bfeaac0ce343f45f5a22702318af5a25752a5034fa8e2022bb620fe6bcb823bfe0a0ccf5e39345d03110
- SSDEEP
  
  24576:wDFhwFzsQNLAr5bj/b4FKHrJ841gAQguqMwP:MFhwFzPBYb02y4SA5M
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2