4be210d452e81ff7f2e8930c180ded79fda3f7bb90d2249b4868de0c03ffd397 | Triage

Sharing

General

Target

4be210d452e81ff7f2e8930c180ded79fda3f7bb90d2249b4868de0c03ffd397
Size

316KB
Sample

221012-tfksraadgk
MD5

6ad8e8e2d83b40f4866d48bfb5170380
SHA1

afbb43ea488722117e3725add806e74ca2ed7349
SHA256

4be210d452e81ff7f2e8930c180ded79fda3f7bb90d2249b4868de0c03ffd397
SHA512

d4f52c786df6584dec5e707835a0f4ec5733004cefc3a707abbf97ff167ba7c36feac2be18f2fd94b692111e4fcdfa5f0f7ba9684b2360449472470c19994096
SSDEEP

6144:vrmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJI:vrvkuveY3ibXz3UQKctk2hsbt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4be210d452e81ff7f2e8930c180ded79fda3f7bb90d2249b4868de0c03ffd397
- Size
  
  316KB
- MD5
  
  6ad8e8e2d83b40f4866d48bfb5170380
- SHA1
  
  afbb43ea488722117e3725add806e74ca2ed7349
- SHA256
  
  4be210d452e81ff7f2e8930c180ded79fda3f7bb90d2249b4868de0c03ffd397
- SHA512
  
  d4f52c786df6584dec5e707835a0f4ec5733004cefc3a707abbf97ff167ba7c36feac2be18f2fd94b692111e4fcdfa5f0f7ba9684b2360449472470c19994096
- SSDEEP
  
  6144:vrmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJI:vrvkuveY3ibXz3UQKctk2hsbt
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2