be9c81df02fbb9cff94df6b8a44b377a7e0ef38613f7cf35527d93e7d483efa5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be9c81df02fbb9cff94df6b8a44b377a7e0ef38613f7cf35527d93e7d483efa5
Size

332KB
Sample

221003-jqhq2adhh8
MD5

69c3376d746090709a46eb8a63908c30
SHA1

28bec508dbf32d3fba58168c950eb1e06b281ac8
SHA256

be9c81df02fbb9cff94df6b8a44b377a7e0ef38613f7cf35527d93e7d483efa5
SHA512

14667bba0b08a776d40c46f89c19adfa3ce6029cb84dbaebc57f9e97264db19e9a9ee8f843412e95921717e1cb46c37244f1648fbce2edea859abf8a915da522
SSDEEP

6144:brw09uEo2S1YnQmCX492DkwNP3qpYFkFkv7BEJIjrmPclT8r/NLiMeh21QDc6s:brtu6/eIo4NWEJAiZih2CIR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  be9c81df02fbb9cff94df6b8a44b377a7e0ef38613f7cf35527d93e7d483efa5
- Size
  
  332KB
- MD5
  
  69c3376d746090709a46eb8a63908c30
- SHA1
  
  28bec508dbf32d3fba58168c950eb1e06b281ac8
- SHA256
  
  be9c81df02fbb9cff94df6b8a44b377a7e0ef38613f7cf35527d93e7d483efa5
- SHA512
  
  14667bba0b08a776d40c46f89c19adfa3ce6029cb84dbaebc57f9e97264db19e9a9ee8f843412e95921717e1cb46c37244f1648fbce2edea859abf8a915da522
- SSDEEP
  
  6144:brw09uEo2S1YnQmCX492DkwNP3qpYFkFkv7BEJIjrmPclT8r/NLiMeh21QDc6s:brtu6/eIo4NWEJAiZih2CIR
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2