a06fee424b348f63baa949eab04b1adcf6b5dfbdce667cc5c4c2050ae1e9369e | Triage

Sharing

General

Target

a06fee424b348f63baa949eab04b1adcf6b5dfbdce667cc5c4c2050ae1e9369e
Size

30KB
Sample

221019-rce2zsahb5
MD5

a16245ac0eff90e64b8e7bfc8f0a0c70
SHA1

2cbc7b0e74f4f4f6af43ff9f117f220fb6afc9fa
SHA256

a06fee424b348f63baa949eab04b1adcf6b5dfbdce667cc5c4c2050ae1e9369e
SHA512

705925a25b8738ea835cd4c157b4a13970a398dd4f4d82d4b775e56184b019e935aa7520b081883e2da100b8c3141f8919c91591bac63fc75a6e811e3ed39f78
SSDEEP

384:8h6/kFL7AhDdeaMO7U1VN+uXL7SkjkKqu3pLey1a/9Tt:8h6/McQlO7juX/qKX3Uga/9Tt

Score

7^/10

Malware Config

Targets

- Target
  
  a06fee424b348f63baa949eab04b1adcf6b5dfbdce667cc5c4c2050ae1e9369e
- Size
  
  30KB
- MD5
  
  a16245ac0eff90e64b8e7bfc8f0a0c70
- SHA1
  
  2cbc7b0e74f4f4f6af43ff9f117f220fb6afc9fa
- SHA256
  
  a06fee424b348f63baa949eab04b1adcf6b5dfbdce667cc5c4c2050ae1e9369e
- SHA512
  
  705925a25b8738ea835cd4c157b4a13970a398dd4f4d82d4b775e56184b019e935aa7520b081883e2da100b8c3141f8919c91591bac63fc75a6e811e3ed39f78
- SSDEEP
  
  384:8h6/kFL7AhDdeaMO7U1VN+uXL7SkjkKqu3pLey1a/9Tt:8h6/McQlO7juX/qKX3Uga/9Tt
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2