c3f47a710176917773f84e86c25cebf4c8e0be4c5c48294e33ad57266b7d0ca4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3f47a710176917773f84e86c25cebf4c8e0be4c5c48294e33ad57266b7d0ca4
Size

153KB
Sample

221201-wrhtmsee45
MD5

2e6dbcc67d19012cad91b7dcd315cebe
SHA1

086a3d2be0118f307de2f7f3b6b311c646a4127a
SHA256

c3f47a710176917773f84e86c25cebf4c8e0be4c5c48294e33ad57266b7d0ca4
SHA512

1d173993753681d9a2e07a4146f86e298ee1db95f790d95036a6aaf84a4e63b32e63d45f9c286e631f249c4a80e89a7302dfbece98dad98e9e625ac1eac22577
SSDEEP

3072:7mp2n5z8uX5MlvT6gqH/kvnBCph8uQt+7POUQp+veh/uA:7mp45znmT6gqfk/4h8w2UOru

Score

7^/10

Malware Config

Targets

- Target
  
  c3f47a710176917773f84e86c25cebf4c8e0be4c5c48294e33ad57266b7d0ca4
- Size
  
  153KB
- MD5
  
  2e6dbcc67d19012cad91b7dcd315cebe
- SHA1
  
  086a3d2be0118f307de2f7f3b6b311c646a4127a
- SHA256
  
  c3f47a710176917773f84e86c25cebf4c8e0be4c5c48294e33ad57266b7d0ca4
- SHA512
  
  1d173993753681d9a2e07a4146f86e298ee1db95f790d95036a6aaf84a4e63b32e63d45f9c286e631f249c4a80e89a7302dfbece98dad98e9e625ac1eac22577
- SSDEEP
  
  3072:7mp2n5z8uX5MlvT6gqH/kvnBCph8uQt+7POUQp+veh/uA:7mp45znmT6gqfk/4h8w2UOru
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2