2f434ac24ac7ba5a16e17a1348e8b715aa7c9c24d29ade2145d8da9906be69c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f434ac24ac7ba5a16e17a1348e8b715aa7c9c24d29ade2145d8da9906be69c5
Size

76KB
Sample

221019-rcclvsaha9
MD5

9172164ec84c71679ec9e7c6554cf2b0
SHA1

6e755700859f6088fab97db0c786532ca8e56198
SHA256

2f434ac24ac7ba5a16e17a1348e8b715aa7c9c24d29ade2145d8da9906be69c5
SHA512

b30a7f34a43e2ecc7f131a15575db8e9d6308c0ba2ac2ef852a7e7328841f742eab4d2a2bd8893a95f25ff799f0023e3dbc2cfafe5e5b8cb3998b67188c9d3e0
SSDEEP

768:KJNRiONqlx14eE7YBB4g5ANEKVKg3BzJvzl/4EvKXy8BOO3w:KJNRiOQrz5ANESKgx9rZSBOOA

Score

7^/10

Malware Config

Targets

- Target
  
  2f434ac24ac7ba5a16e17a1348e8b715aa7c9c24d29ade2145d8da9906be69c5
- Size
  
  76KB
- MD5
  
  9172164ec84c71679ec9e7c6554cf2b0
- SHA1
  
  6e755700859f6088fab97db0c786532ca8e56198
- SHA256
  
  2f434ac24ac7ba5a16e17a1348e8b715aa7c9c24d29ade2145d8da9906be69c5
- SHA512
  
  b30a7f34a43e2ecc7f131a15575db8e9d6308c0ba2ac2ef852a7e7328841f742eab4d2a2bd8893a95f25ff799f0023e3dbc2cfafe5e5b8cb3998b67188c9d3e0
- SSDEEP
  
  768:KJNRiONqlx14eE7YBB4g5ANEKVKg3BzJvzl/4EvKXy8BOO3w:KJNRiOQrz5ANESKgx9rZSBOOA
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2