2906f6fc54eca43b0af3cba2f58035f8e7276db5661593d28d0d6928aeeca0ba | Triage

Sharing

General

Target

2906f6fc54eca43b0af3cba2f58035f8e7276db5661593d28d0d6928aeeca0ba
Size

313KB
Sample

221020-tattgacde2
MD5

96315403cf73c3bca144e75893d2ff80
SHA1

fa74929a9b195bf198a8dca74bc151590f971266
SHA256

2906f6fc54eca43b0af3cba2f58035f8e7276db5661593d28d0d6928aeeca0ba
SHA512

b371b53636a6fa64afa7a8fa842ac58198933817943ec88666333a4747a4fc92095dc00f05749e66b680606eea89a3745ee03e41db7429777d76445b64f70736
SSDEEP

6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LD:/ryu6/eIo4vMResyEf0uP9d9UG0D

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2906f6fc54eca43b0af3cba2f58035f8e7276db5661593d28d0d6928aeeca0ba
- Size
  
  313KB
- MD5
  
  96315403cf73c3bca144e75893d2ff80
- SHA1
  
  fa74929a9b195bf198a8dca74bc151590f971266
- SHA256
  
  2906f6fc54eca43b0af3cba2f58035f8e7276db5661593d28d0d6928aeeca0ba
- SHA512
  
  b371b53636a6fa64afa7a8fa842ac58198933817943ec88666333a4747a4fc92095dc00f05749e66b680606eea89a3745ee03e41db7429777d76445b64f70736
- SSDEEP
  
  6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LD:/ryu6/eIo4vMResyEf0uP9d9UG0D
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2