450ce1fe76b4c668c59c5e0f449e10b9020e81fdd0eaff69e523dda1d5146985 | Triage

Sharing

General

Target

450ce1fe76b4c668c59c5e0f449e10b9020e81fdd0eaff69e523dda1d5146985
Size

1.2MB
Sample

221126-ve3slshg98
MD5

9e68486c12f744ff0ab4dbe35f64aad1
SHA1

7a31527165a8f6c9d7f3c3d5080ea0be163b7e16
SHA256

450ce1fe76b4c668c59c5e0f449e10b9020e81fdd0eaff69e523dda1d5146985
SHA512

e136dce5d9a632050c7dd9905ebd9b37985b26e86e5f8058f7dfd1ac3ad1c3db65c56becbd9b1e1b2efd75171b00d6bf0f24490a0ce9f41fbf589aa11ce03e34
SSDEEP

24576:bCStj/R+pud1sQN6TgXxruXQNjj43/qq:9r0C/5XIANvM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  450ce1fe76b4c668c59c5e0f449e10b9020e81fdd0eaff69e523dda1d5146985
- Size
  
  1.2MB
- MD5
  
  9e68486c12f744ff0ab4dbe35f64aad1
- SHA1
  
  7a31527165a8f6c9d7f3c3d5080ea0be163b7e16
- SHA256
  
  450ce1fe76b4c668c59c5e0f449e10b9020e81fdd0eaff69e523dda1d5146985
- SHA512
  
  e136dce5d9a632050c7dd9905ebd9b37985b26e86e5f8058f7dfd1ac3ad1c3db65c56becbd9b1e1b2efd75171b00d6bf0f24490a0ce9f41fbf589aa11ce03e34
- SSDEEP
  
  24576:bCStj/R+pud1sQN6TgXxruXQNjj43/qq:9r0C/5XIANvM
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2