2ce2045ada2fdf6436ece391242e0664c64bf305234a2026aae519b258f0998e | Triage

Sharing

General

Target

2ce2045ada2fdf6436ece391242e0664c64bf305234a2026aae519b258f0998e
Size

1.1MB
Sample

221126-vfp8xahh57
MD5

b7f3dd9113d96a4c10182a1be55aa688
SHA1

19fe4391ef574728109bb6a6072b5588a0c32bcd
SHA256

2ce2045ada2fdf6436ece391242e0664c64bf305234a2026aae519b258f0998e
SHA512

c97f0b4bf6460e45209ca9f67f57da4382afac3c2dbe678da774cc53387eb90d5ab1330fd7bafdd156597d11e0435ca5950a20d81c41e8f05a448864e0e4a113
SSDEEP

24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2ce2045ada2fdf6436ece391242e0664c64bf305234a2026aae519b258f0998e
- Size
  
  1.1MB
- MD5
  
  b7f3dd9113d96a4c10182a1be55aa688
- SHA1
  
  19fe4391ef574728109bb6a6072b5588a0c32bcd
- SHA256
  
  2ce2045ada2fdf6436ece391242e0664c64bf305234a2026aae519b258f0998e
- SHA512
  
  c97f0b4bf6460e45209ca9f67f57da4382afac3c2dbe678da774cc53387eb90d5ab1330fd7bafdd156597d11e0435ca5950a20d81c41e8f05a448864e0e4a113
- SSDEEP
  
  24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr:jWtbKELB6rhW8h
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2