fc46dd25a97413e07769221db54d672272f8bea53a85116563cfcbfd4d3ef3d7 | Triage

Sharing

General

Target

fc46dd25a97413e07769221db54d672272f8bea53a85116563cfcbfd4d3ef3d7
Size

147KB
Sample

221127-tyfxhsfb6v
MD5

644510451a91d45dac2d2a360a8a0bfc
SHA1

d86a5469b2a6168af780fd3969f9eb3f3a49f0c7
SHA256

fc46dd25a97413e07769221db54d672272f8bea53a85116563cfcbfd4d3ef3d7
SHA512

3c82fa1c6c26a991e6b2fbde28f8a2f4809bffd618de59c35160684bd02e2d2d6cfa8bf18c69fb1594d4ecf23e560466055e7018f8b3afa12d6a5c0bb871b91d
SSDEEP

3072:pxC8cZP6bDtsAlCoJOdaYmG/K1BnSsVV8PxtFdo+Afbtbv0dD:pY8IP6bDtsAUnmZBnSsVV8Px9TAztI

Score

7^/10

Malware Config

Targets

- Target
  
  fc46dd25a97413e07769221db54d672272f8bea53a85116563cfcbfd4d3ef3d7
- Size
  
  147KB
- MD5
  
  644510451a91d45dac2d2a360a8a0bfc
- SHA1
  
  d86a5469b2a6168af780fd3969f9eb3f3a49f0c7
- SHA256
  
  fc46dd25a97413e07769221db54d672272f8bea53a85116563cfcbfd4d3ef3d7
- SHA512
  
  3c82fa1c6c26a991e6b2fbde28f8a2f4809bffd618de59c35160684bd02e2d2d6cfa8bf18c69fb1594d4ecf23e560466055e7018f8b3afa12d6a5c0bb871b91d
- SSDEEP
  
  3072:pxC8cZP6bDtsAlCoJOdaYmG/K1BnSsVV8PxtFdo+Afbtbv0dD:pY8IP6bDtsAUnmZBnSsVV8Px9TAztI
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2