8aca0a46ba2844ddd4ae72746c1781f81f23a326ebb150ffb2ae511d10112c31 | Triage

Sharing

General

Target

8aca0a46ba2844ddd4ae72746c1781f81f23a326ebb150ffb2ae511d10112c31
Size

316KB
Sample

221028-1769dsheh4
MD5

0b33271185b881f5af21836535e86400
SHA1

f73e610b3596b64611b7a8eb03b57436da9da957
SHA256

8aca0a46ba2844ddd4ae72746c1781f81f23a326ebb150ffb2ae511d10112c31
SHA512

e42fdaf3dcec3897b31cce5386292ce4908cfc678c15bc1ee7c9d407aa5fb6b7da92ad756c2c02acf1b30a0bd652ced170db57b6d0504a396be5d22606f15138
SSDEEP

6144:Or+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmik:OrXkuveY3z+U83tbLpmsgh/k

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8aca0a46ba2844ddd4ae72746c1781f81f23a326ebb150ffb2ae511d10112c31
- Size
  
  316KB
- MD5
  
  0b33271185b881f5af21836535e86400
- SHA1
  
  f73e610b3596b64611b7a8eb03b57436da9da957
- SHA256
  
  8aca0a46ba2844ddd4ae72746c1781f81f23a326ebb150ffb2ae511d10112c31
- SHA512
  
  e42fdaf3dcec3897b31cce5386292ce4908cfc678c15bc1ee7c9d407aa5fb6b7da92ad756c2c02acf1b30a0bd652ced170db57b6d0504a396be5d22606f15138
- SSDEEP
  
  6144:Or+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmik:OrXkuveY3z+U83tbLpmsgh/k
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2