21050bcf42b36c544c5b25a8759cbace1d4f580c2d7a8074667820e1a24387b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21050bcf42b36c544c5b25a8759cbace1d4f580c2d7a8074667820e1a24387b8
Size

259KB
Sample

221029-h8exesfed8
MD5

fa0b31b82b681706997983ba0198cec8
SHA1

54f21df2d60ed9be98fb50792c4509daef2a4fa0
SHA256

21050bcf42b36c544c5b25a8759cbace1d4f580c2d7a8074667820e1a24387b8
SHA512

2a5e0a94ddb069d390e1c3e7f784d20d73c8df1044aadc5132f36920d9b521f302aa5ff04aabe44bd38f52812cdcd6accc9873ebea814550547091b89ba91ba4
SSDEEP

3072:epC7vDk7XPiNcraDFO1QgaLzFx9NuNz4yZ98dfWmmQ4+0PdBSP946pkd+:wcvA7XPi2e1LzFxc4yZimLd0Phpkd

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  21050bcf42b36c544c5b25a8759cbace1d4f580c2d7a8074667820e1a24387b8
- Size
  
  259KB
- MD5
  
  fa0b31b82b681706997983ba0198cec8
- SHA1
  
  54f21df2d60ed9be98fb50792c4509daef2a4fa0
- SHA256
  
  21050bcf42b36c544c5b25a8759cbace1d4f580c2d7a8074667820e1a24387b8
- SHA512
  
  2a5e0a94ddb069d390e1c3e7f784d20d73c8df1044aadc5132f36920d9b521f302aa5ff04aabe44bd38f52812cdcd6accc9873ebea814550547091b89ba91ba4
- SSDEEP
  
  3072:epC7vDk7XPiNcraDFO1QgaLzFx9NuNz4yZ98dfWmmQ4+0PdBSP946pkd+:wcvA7XPi2e1LzFxc4yZimLd0Phpkd
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2