a2d03b163b1a993b97043f7891eaeb936eba31d90db70653af20f381e51c2778 | Triage

Sharing

General

Target

a2d03b163b1a993b97043f7891eaeb936eba31d90db70653af20f381e51c2778
Size

316KB
Sample

221012-s7b49ahhh2
MD5

6597751998bc3d5ffde721aedcd1d2f0
SHA1

d627248bf60fe0195debf3abd163c9c94a5f1339
SHA256

a2d03b163b1a993b97043f7891eaeb936eba31d90db70653af20f381e51c2778
SHA512

a8c0e3377583b86a2f45edde1e77f7aef7730a20f06b345d6d6310019c9eb33c7ec34de9c59d60e31548f33c1d1b8dd6631edd791b8bbe2ea3089c80870eea1e
SSDEEP

6144:qribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xq:qr7kuveY33FJUo7MDkA6z

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a2d03b163b1a993b97043f7891eaeb936eba31d90db70653af20f381e51c2778
- Size
  
  316KB
- MD5
  
  6597751998bc3d5ffde721aedcd1d2f0
- SHA1
  
  d627248bf60fe0195debf3abd163c9c94a5f1339
- SHA256
  
  a2d03b163b1a993b97043f7891eaeb936eba31d90db70653af20f381e51c2778
- SHA512
  
  a8c0e3377583b86a2f45edde1e77f7aef7730a20f06b345d6d6310019c9eb33c7ec34de9c59d60e31548f33c1d1b8dd6631edd791b8bbe2ea3089c80870eea1e
- SSDEEP
  
  6144:qribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xq:qr7kuveY33FJUo7MDkA6z
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2