51a633e84128e9d2d74664352825a85a3ea8345a15ebd4cd246da4dffd8841e6 | Triage

Sharing

General

Target

51a633e84128e9d2d74664352825a85a3ea8345a15ebd4cd246da4dffd8841e6
Size

1.1MB
Sample

221127-d35hnsfe77
MD5

0c3a7ba7807551b74db7c45bbacad5ee
SHA1

3541bb4b1f123d5f88308c5a64c4d44a73f471cd
SHA256

51a633e84128e9d2d74664352825a85a3ea8345a15ebd4cd246da4dffd8841e6
SHA512

f515d28043577d1e056da23b6a863b0d295afd8bfa904e7801f9b472cc09adadc837ad368c00960d6bbb89c29911f4f2ce1186eca231509895fd9d28185d3f3a
SSDEEP

12288:tyftkAdJQEa3ptOrGJuuFtGi3XJdalEZ73PfHq8ZN/HOAa7v8aHAMc3GhQrTsBCz:sbJa36GsgoeFdfS8Nvdag3b5TUbfM

Score

7^/10

Malware Config

Targets

- Target
  
  51a633e84128e9d2d74664352825a85a3ea8345a15ebd4cd246da4dffd8841e6
- Size
  
  1.1MB
- MD5
  
  0c3a7ba7807551b74db7c45bbacad5ee
- SHA1
  
  3541bb4b1f123d5f88308c5a64c4d44a73f471cd
- SHA256
  
  51a633e84128e9d2d74664352825a85a3ea8345a15ebd4cd246da4dffd8841e6
- SHA512
  
  f515d28043577d1e056da23b6a863b0d295afd8bfa904e7801f9b472cc09adadc837ad368c00960d6bbb89c29911f4f2ce1186eca231509895fd9d28185d3f3a
- SSDEEP
  
  12288:tyftkAdJQEa3ptOrGJuuFtGi3XJdalEZ73PfHq8ZN/HOAa7v8aHAMc3GhQrTsBCz:sbJa36GsgoeFdfS8Nvdag3b5TUbfM
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2