130c6730570e124b67c4c687b3d3500a16d640bb6247ce56682be73f60c5a705 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35593530ed4b0dd4eae38921055f1bcc
Size

694KB
Sample

231225-xc2hwaebem
MD5

35593530ed4b0dd4eae38921055f1bcc
SHA1

043bd2a0c60c878082405c50f2959b6b1114ba4d
SHA256

130c6730570e124b67c4c687b3d3500a16d640bb6247ce56682be73f60c5a705
SHA512

fda29b1285d0407b36af6d1eaf532112110a64b67f8860b3557500fd5151922397bcd0f2bb1c3c2de213e57c96cf952ecf21521e4384bbde8e3cdd3dbe5af04c
SSDEEP

12288:OHEXvzEFWs4iSVo3DUY/ZYVlYThADtaQPbcSTpl2oKrweMBPsup30f4vSSZm58vo:OHEXvzEFWLtW3DUY/ZthawkbB2oKrwYs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  35593530ed4b0dd4eae38921055f1bcc
- Size
  
  694KB
- MD5
  
  35593530ed4b0dd4eae38921055f1bcc
- SHA1
  
  043bd2a0c60c878082405c50f2959b6b1114ba4d
- SHA256
  
  130c6730570e124b67c4c687b3d3500a16d640bb6247ce56682be73f60c5a705
- SHA512
  
  fda29b1285d0407b36af6d1eaf532112110a64b67f8860b3557500fd5151922397bcd0f2bb1c3c2de213e57c96cf952ecf21521e4384bbde8e3cdd3dbe5af04c
- SSDEEP
  
  12288:OHEXvzEFWs4iSVo3DUY/ZYVlYThADtaQPbcSTpl2oKrweMBPsup30f4vSSZm58vo:OHEXvzEFWLtW3DUY/ZthawkbB2oKrwYs
Score

7^/10

discovery
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2