ba094acccee7bd81a518e638f9555294dc86f05fd82e31663bf071d0db8329b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba094acccee7bd81a518e638f9555294dc86f05fd82e31663bf071d0db8329b3
Size

327KB
Sample

221002-j9tbwagfcq
MD5

6ef782a7f92224859b090bcacd259300
SHA1

ff883a38e5ff60e91c0b7250a4f5e40a75d2fa60
SHA256

ba094acccee7bd81a518e638f9555294dc86f05fd82e31663bf071d0db8329b3
SHA512

2378f31fe14265bcc0b7caff418e4fb6fb8992819b3ea5e4c61c99a9e27d90c5bd6417088a922658cd4c0e668d67a8257c78e440fd10557e544dcc88608ddde0
SSDEEP

6144:trLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnXM:trAkuveY3sz9V8wlCs0I7v1s2BlU8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba094acccee7bd81a518e638f9555294dc86f05fd82e31663bf071d0db8329b3
- Size
  
  327KB
- MD5
  
  6ef782a7f92224859b090bcacd259300
- SHA1
  
  ff883a38e5ff60e91c0b7250a4f5e40a75d2fa60
- SHA256
  
  ba094acccee7bd81a518e638f9555294dc86f05fd82e31663bf071d0db8329b3
- SHA512
  
  2378f31fe14265bcc0b7caff418e4fb6fb8992819b3ea5e4c61c99a9e27d90c5bd6417088a922658cd4c0e668d67a8257c78e440fd10557e544dcc88608ddde0
- SSDEEP
  
  6144:trLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnXM:trAkuveY3sz9V8wlCs0I7v1s2BlU8
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2