478046acc8b459ae0dbf159f4e6f32c50f6429c1648febc927648a8aa1bd673f | Triage

Sharing

General

Target

478046acc8b459ae0dbf159f4e6f32c50f6429c1648febc927648a8aa1bd673f
Size

313KB
Sample

221029-q3wa8ahfa5
MD5

a9b8d5fcec5f50f2f6c865ce4ecf1ad9
SHA1

7641ab3837c02009d5cd5a14ee92f6bf0a6132ed
SHA256

478046acc8b459ae0dbf159f4e6f32c50f6429c1648febc927648a8aa1bd673f
SHA512

2aca8f2a514cc7df0deb4994b0fe0fc4e38abf0067e578de763ee45332c0c1518e6b96b3f20a97b1cf0bc9fd7083118145a117dd41ba7380c4418d656eaaa20b
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYP:Ark4u6/eIo4nlu7trxFtApfgMyrpjYP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  478046acc8b459ae0dbf159f4e6f32c50f6429c1648febc927648a8aa1bd673f
- Size
  
  313KB
- MD5
  
  a9b8d5fcec5f50f2f6c865ce4ecf1ad9
- SHA1
  
  7641ab3837c02009d5cd5a14ee92f6bf0a6132ed
- SHA256
  
  478046acc8b459ae0dbf159f4e6f32c50f6429c1648febc927648a8aa1bd673f
- SHA512
  
  2aca8f2a514cc7df0deb4994b0fe0fc4e38abf0067e578de763ee45332c0c1518e6b96b3f20a97b1cf0bc9fd7083118145a117dd41ba7380c4418d656eaaa20b
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYP:Ark4u6/eIo4nlu7trxFtApfgMyrpjYP
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2