fbad0946831777ba9212cc3e93156e32076dc5a0e171bd62713bbd8d960e2f28 | Triage

Sharing

General

Target

fbad0946831777ba9212cc3e93156e32076dc5a0e171bd62713bbd8d960e2f28
Size

1.1MB
Sample

221127-adcjtaaa8t
MD5

fc1ac14582b22b0685025e9d74517514
SHA1

bcbba33d23bf7762ce486cb44f975ddfe136b277
SHA256

fbad0946831777ba9212cc3e93156e32076dc5a0e171bd62713bbd8d960e2f28
SHA512

505aa3fd200a22f062436f5a24675308af245e192aa9f9ec7e8c5d273921df8afa9f5562bc24fac7fb6cc6f8f00537272ae724754270561f70680dbd0f01c78f
SSDEEP

24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr3:jWtbKELB6rhW8h3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fbad0946831777ba9212cc3e93156e32076dc5a0e171bd62713bbd8d960e2f28
- Size
  
  1.1MB
- MD5
  
  fc1ac14582b22b0685025e9d74517514
- SHA1
  
  bcbba33d23bf7762ce486cb44f975ddfe136b277
- SHA256
  
  fbad0946831777ba9212cc3e93156e32076dc5a0e171bd62713bbd8d960e2f28
- SHA512
  
  505aa3fd200a22f062436f5a24675308af245e192aa9f9ec7e8c5d273921df8afa9f5562bc24fac7fb6cc6f8f00537272ae724754270561f70680dbd0f01c78f
- SSDEEP
  
  24576:j8vLvb1yMby1E51gyoMD/9+rSOPTW8pr3:jWtbKELB6rhW8h3
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2