6a02b4bc5f6fc2084c7e6662e7897c30ab1069948e0639962fa5ce7d5e12eeee | Triage

Sharing

General

Target

6a02b4bc5f6fc2084c7e6662e7897c30ab1069948e0639962fa5ce7d5e12eeee
Size

328KB
Sample

221019-r56qeacce6
MD5

914317f7013d274b96c91994a63ebde0
SHA1

fd35807d4764d01955a2c2482002bfe174a940c0
SHA256

6a02b4bc5f6fc2084c7e6662e7897c30ab1069948e0639962fa5ce7d5e12eeee
SHA512

b2c561ca6f70c2d6d03bc553bedbbfbc94a363e48c5db8c29f2f2c4c3bdaec8ebc028c23279ef36d806a52bc8612e9dd922ed562efb1a20734b43fff0e2fca1c
SSDEEP

6144:Srx9bUzkuvcBYC47l2x7SKsyyRbDLdfAIDeNHOi33tmagju:Sr4kuveY3gNSDtel33t7yu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6a02b4bc5f6fc2084c7e6662e7897c30ab1069948e0639962fa5ce7d5e12eeee
- Size
  
  328KB
- MD5
  
  914317f7013d274b96c91994a63ebde0
- SHA1
  
  fd35807d4764d01955a2c2482002bfe174a940c0
- SHA256
  
  6a02b4bc5f6fc2084c7e6662e7897c30ab1069948e0639962fa5ce7d5e12eeee
- SHA512
  
  b2c561ca6f70c2d6d03bc553bedbbfbc94a363e48c5db8c29f2f2c4c3bdaec8ebc028c23279ef36d806a52bc8612e9dd922ed562efb1a20734b43fff0e2fca1c
- SSDEEP
  
  6144:Srx9bUzkuvcBYC47l2x7SKsyyRbDLdfAIDeNHOi33tmagju:Sr4kuveY3gNSDtel33t7yu
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2