3226dd4a887c464a11c9c66b2f2222014dc222a23a116cc8cba0488e1b0d278a | Triage

Sharing

General

Target

3226dd4a887c464a11c9c66b2f2222014dc222a23a116cc8cba0488e1b0d278a
Size

64KB
Sample

221020-2cf96ahbaq
MD5

549fa0ed03135f321f9b3527329fc190
SHA1

ce6386a428e3d4ececed48c0367049f883bbc407
SHA256

3226dd4a887c464a11c9c66b2f2222014dc222a23a116cc8cba0488e1b0d278a
SHA512

62ea91370804c9c453c15f0a2587049b75c2bdd414eaed2d2782f97a84c9f1b7e5706e2c4673bee6defe2ee0ada055d1be8e19ee546e29ae8adc0895f2da6a70
SSDEEP

768:NQr04EpnIPz8v96hkbObBIEp0ocEnaLj8+IBfCylsCclAYbjxX2:NY044I78v96EEnaLj8bh+lv

Score

7^/10

Malware Config

Targets

- Target
  
  3226dd4a887c464a11c9c66b2f2222014dc222a23a116cc8cba0488e1b0d278a
- Size
  
  64KB
- MD5
  
  549fa0ed03135f321f9b3527329fc190
- SHA1
  
  ce6386a428e3d4ececed48c0367049f883bbc407
- SHA256
  
  3226dd4a887c464a11c9c66b2f2222014dc222a23a116cc8cba0488e1b0d278a
- SHA512
  
  62ea91370804c9c453c15f0a2587049b75c2bdd414eaed2d2782f97a84c9f1b7e5706e2c4673bee6defe2ee0ada055d1be8e19ee546e29ae8adc0895f2da6a70
- SSDEEP
  
  768:NQr04EpnIPz8v96hkbObBIEp0ocEnaLj8+IBfCylsCclAYbjxX2:NY044I78v96EEnaLj8bh+lv
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2