1f2701164944940f243ff900858411969dc3319be41749dedaf8b7df30f7fbb2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f2701164944940f243ff900858411969dc3319be41749dedaf8b7df30f7fbb2
Size

317KB
Sample

221020-q4dskagaaq
MD5

41b86f3d8dc342d95d33e901556c932c
SHA1

a48d24a27f9da6e972fcc381ef05a48d0f05f8f8
SHA256

1f2701164944940f243ff900858411969dc3319be41749dedaf8b7df30f7fbb2
SHA512

dbdd5dd49ab25f64d7decf7d4d766c777712801a6cb6551b98a2d3d6cc120647f5bf18c5d6ee33436060cc078c8d1de033ecba5455bd207619c75edf9ad65fcd
SSDEEP

6144:k4JSk+/jbZlGxHinA/jerGvwbKNk4VMkJJvo3lTJi3:k4sx/XZlGgnAL2Gvw26GMWQ3lTJi3

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  1f2701164944940f243ff900858411969dc3319be41749dedaf8b7df30f7fbb2
- Size
  
  317KB
- MD5
  
  41b86f3d8dc342d95d33e901556c932c
- SHA1
  
  a48d24a27f9da6e972fcc381ef05a48d0f05f8f8
- SHA256
  
  1f2701164944940f243ff900858411969dc3319be41749dedaf8b7df30f7fbb2
- SHA512
  
  dbdd5dd49ab25f64d7decf7d4d766c777712801a6cb6551b98a2d3d6cc120647f5bf18c5d6ee33436060cc078c8d1de033ecba5455bd207619c75edf9ad65fcd
- SSDEEP
  
  6144:k4JSk+/jbZlGxHinA/jerGvwbKNk4VMkJJvo3lTJi3:k4sx/XZlGgnAL2Gvw26GMWQ3lTJi3
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2