3ebf78551e5763ebc65e32e9063113116570329eaade97816b268cf6fdc4f71f | Triage

Sharing

General

Target

3ebf78551e5763ebc65e32e9063113116570329eaade97816b268cf6fdc4f71f
Size

316KB
Sample

221021-d449asaceq
MD5

7cf9d735c90f81d85dbe1a327bf6ebd0
SHA1

25e5c4bd899783364ed73a94cf29e959f19d8931
SHA256

3ebf78551e5763ebc65e32e9063113116570329eaade97816b268cf6fdc4f71f
SHA512

65d4f44906846af8edd6754bde450726b9307185e33eb83c4eb74c1ecbcf93364f0bfcc05126091e49a36310ed056b362ade67165b921da7c6a112f15dd6a213
SSDEEP

6144:NrYbUzkuvcBYC47l2xSHyxdphxUIdRyZBBMX9v9y8DBMP:NrdkuveY354dH3diBMX9v9Ns

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3ebf78551e5763ebc65e32e9063113116570329eaade97816b268cf6fdc4f71f
- Size
  
  316KB
- MD5
  
  7cf9d735c90f81d85dbe1a327bf6ebd0
- SHA1
  
  25e5c4bd899783364ed73a94cf29e959f19d8931
- SHA256
  
  3ebf78551e5763ebc65e32e9063113116570329eaade97816b268cf6fdc4f71f
- SHA512
  
  65d4f44906846af8edd6754bde450726b9307185e33eb83c4eb74c1ecbcf93364f0bfcc05126091e49a36310ed056b362ade67165b921da7c6a112f15dd6a213
- SSDEEP
  
  6144:NrYbUzkuvcBYC47l2xSHyxdphxUIdRyZBBMX9v9y8DBMP:NrdkuveY354dH3diBMX9v9Ns
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2