5ab4aa1eb4a9d40b89d028874653ccf39cb34e926513f7802ea773fa742dc2e5 | Triage

Sharing

General

Target

5ab4aa1eb4a9d40b89d028874653ccf39cb34e926513f7802ea773fa742dc2e5
Size

324KB
Sample

221029-rajbmahhb3
MD5

b7f1e83668af147a2b5dc4c77ca05f58
SHA1

715b44393ccd703f172723cecc673dd3976dd541
SHA256

5ab4aa1eb4a9d40b89d028874653ccf39cb34e926513f7802ea773fa742dc2e5
SHA512

cce44b28dfa7b0d8db5acd46fa13465f9eb70159a1f8f34b33874827f950c80d3ee7abb1f8f7ae1cb06e6d7739435df4e1a5a58280042a02ccc286435bcd6a61
SSDEEP

6144:QhpyfxlxzA6eRns63mVBnN6Ymw6XRbLD3p0KPKxyKHdUdJcHibbHFtCG:1xHuns6mVBKwobP3pAJ9UrcEbltCG

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  5ab4aa1eb4a9d40b89d028874653ccf39cb34e926513f7802ea773fa742dc2e5
- Size
  
  324KB
- MD5
  
  b7f1e83668af147a2b5dc4c77ca05f58
- SHA1
  
  715b44393ccd703f172723cecc673dd3976dd541
- SHA256
  
  5ab4aa1eb4a9d40b89d028874653ccf39cb34e926513f7802ea773fa742dc2e5
- SHA512
  
  cce44b28dfa7b0d8db5acd46fa13465f9eb70159a1f8f34b33874827f950c80d3ee7abb1f8f7ae1cb06e6d7739435df4e1a5a58280042a02ccc286435bcd6a61
- SSDEEP
  
  6144:QhpyfxlxzA6eRns63mVBnN6Ymw6XRbLD3p0KPKxyKHdUdJcHibbHFtCG:1xHuns6mVBKwobP3pAJ9UrcEbltCG
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2