d2e53d762b37f2946fad9c76a2912664199bbbcb9029e0ea91295efa5db805b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2e53d762b37f2946fad9c76a2912664199bbbcb9029e0ea91295efa5db805b1
Size

314KB
Sample

221003-jn469afchm
MD5

44d0026eb4c8b57d08c8763b5ede0ed0
SHA1

97ccc2075c436b3bb2bf5fa9b0267071607fc680
SHA256

d2e53d762b37f2946fad9c76a2912664199bbbcb9029e0ea91295efa5db805b1
SHA512

4c949e33c0b82c5eecf4386de1d00956ae2b4bde70948745306960c35e0f10d37003af42886e74ffafa2247d3e048628e30d6dcc4074494a51874d778fe0555d
SSDEEP

6144:+reyVm/tSbUzkuvcBYC47l2xywzjVaXJuM39ZLg5FxXsD+49oCg0oPc:+rzVm/pkuveY3nwdatzg5fXsD+49lg9k

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d2e53d762b37f2946fad9c76a2912664199bbbcb9029e0ea91295efa5db805b1
- Size
  
  314KB
- MD5
  
  44d0026eb4c8b57d08c8763b5ede0ed0
- SHA1
  
  97ccc2075c436b3bb2bf5fa9b0267071607fc680
- SHA256
  
  d2e53d762b37f2946fad9c76a2912664199bbbcb9029e0ea91295efa5db805b1
- SHA512
  
  4c949e33c0b82c5eecf4386de1d00956ae2b4bde70948745306960c35e0f10d37003af42886e74ffafa2247d3e048628e30d6dcc4074494a51874d778fe0555d
- SSDEEP
  
  6144:+reyVm/tSbUzkuvcBYC47l2xywzjVaXJuM39ZLg5FxXsD+49oCg0oPc:+rzVm/pkuveY3nwdatzg5fXsD+49lg9k
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2