ad7d811ec25f1fc297e8c7f5dc7ad27b741ed0c2ce6d5aa286bb621d78e4c379 | Triage

Sharing

General

Target

ad7d811ec25f1fc297e8c7f5dc7ad27b741ed0c2ce6d5aa286bb621d78e4c379
Size

317KB
Sample

221020-qq99lsfdcj
MD5

a045ac6510ee75ea1e102fcf77ea6927
SHA1

0387d317670159729273648873299912b5d0008c
SHA256

ad7d811ec25f1fc297e8c7f5dc7ad27b741ed0c2ce6d5aa286bb621d78e4c379
SHA512

b0bf6d673a8ee50b44699760eb424ac2897943614821f88fa67046eadfcd597a8d5fb92922433cd9e1ec006abfebf0d632514d15aa8562d0fd13d639eecc688f
SSDEEP

6144:3cgx3n5i3jQAbPVJau2YfqKoAsCQuvQTpDY7W3nqHo:3F3nkkUPl2QoAsLE7sYo

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  ad7d811ec25f1fc297e8c7f5dc7ad27b741ed0c2ce6d5aa286bb621d78e4c379
- Size
  
  317KB
- MD5
  
  a045ac6510ee75ea1e102fcf77ea6927
- SHA1
  
  0387d317670159729273648873299912b5d0008c
- SHA256
  
  ad7d811ec25f1fc297e8c7f5dc7ad27b741ed0c2ce6d5aa286bb621d78e4c379
- SHA512
  
  b0bf6d673a8ee50b44699760eb424ac2897943614821f88fa67046eadfcd597a8d5fb92922433cd9e1ec006abfebf0d632514d15aa8562d0fd13d639eecc688f
- SSDEEP
  
  6144:3cgx3n5i3jQAbPVJau2YfqKoAsCQuvQTpDY7W3nqHo:3F3nkkUPl2QoAsLE7sYo
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2