305f599fa18f8a67904bb051ef13075c49e42ed96d910d00416cdf5ca799b363 | Triage

Sharing

General

Target

305f599fa18f8a67904bb051ef13075c49e42ed96d910d00416cdf5ca799b363
Size

332KB
Sample

221011-qlvy5afggj
MD5

71af0cd406c9ed3b0f5d7dd348c40f53
SHA1

02555656f294e7101c90b1f4102e9fac6cd1dbaf
SHA256

305f599fa18f8a67904bb051ef13075c49e42ed96d910d00416cdf5ca799b363
SHA512

8ef5db6970236a8eef28094a631d01450cc5acf980012d78cd017de5a24f0840e7300648bd88c01b0dd1c5fbe1b081c61cfdad35bc906699c38740ccd3c05005
SSDEEP

6144:GVQRCcBWl9qAJo5SVTJwtdPgRQsM/Q4tNZNebxDTZR59O2b:FRoKekxr/Q4tPNeBTF9O2b

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  305f599fa18f8a67904bb051ef13075c49e42ed96d910d00416cdf5ca799b363
- Size
  
  332KB
- MD5
  
  71af0cd406c9ed3b0f5d7dd348c40f53
- SHA1
  
  02555656f294e7101c90b1f4102e9fac6cd1dbaf
- SHA256
  
  305f599fa18f8a67904bb051ef13075c49e42ed96d910d00416cdf5ca799b363
- SHA512
  
  8ef5db6970236a8eef28094a631d01450cc5acf980012d78cd017de5a24f0840e7300648bd88c01b0dd1c5fbe1b081c61cfdad35bc906699c38740ccd3c05005
- SSDEEP
  
  6144:GVQRCcBWl9qAJo5SVTJwtdPgRQsM/Q4tNZNebxDTZR59O2b:FRoKekxr/Q4tPNeBTF9O2b
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2