005e4155fdfbc5a9219a35c5a45db57cbb5f4f4086488c8f7643fa7026bf4b94 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

005e4155fdfbc5a9219a35c5a45db57cbb5f4f4086488c8f7643fa7026bf4b94
Size

316KB
Sample

221021-d9n49saeep
MD5

40d8304922bc0755839938cba7383090
SHA1

0d788c09dbd631ab785400d2b23f4c8b1f8e5552
SHA256

005e4155fdfbc5a9219a35c5a45db57cbb5f4f4086488c8f7643fa7026bf4b94
SHA512

62fd575339b7a0e4d0ac1315b4477700038e3f7fe8482cc7f998fee2889a9f4daecfca5d5692fb7846fb84493ec6595f4faf24967a8316a9076e9b86f07b1499
SSDEEP

6144:nrFbUzkuvcBYC47l2xWFAS3r/n2KvN48uFPPDZyM5:nr2kuveY3ZF31N4XxZj5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  005e4155fdfbc5a9219a35c5a45db57cbb5f4f4086488c8f7643fa7026bf4b94
- Size
  
  316KB
- MD5
  
  40d8304922bc0755839938cba7383090
- SHA1
  
  0d788c09dbd631ab785400d2b23f4c8b1f8e5552
- SHA256
  
  005e4155fdfbc5a9219a35c5a45db57cbb5f4f4086488c8f7643fa7026bf4b94
- SHA512
  
  62fd575339b7a0e4d0ac1315b4477700038e3f7fe8482cc7f998fee2889a9f4daecfca5d5692fb7846fb84493ec6595f4faf24967a8316a9076e9b86f07b1499
- SSDEEP
  
  6144:nrFbUzkuvcBYC47l2xWFAS3r/n2KvN48uFPPDZyM5:nr2kuveY3ZF31N4XxZj5
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2