af6bb29d73a992aba07adebb3abde1906b6e89e509a72e0e26c65a33ca069a2b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af6bb29d73a992aba07adebb3abde1906b6e89e509a72e0e26c65a33ca069a2b
Size

261KB
Sample

221029-rcqhqaahej
MD5

d46c0072fc6f544cf36788b869c5d393
SHA1

f82aa2fde27c62de758ad1725e417ff1ab554e28
SHA256

af6bb29d73a992aba07adebb3abde1906b6e89e509a72e0e26c65a33ca069a2b
SHA512

230512cb048abdda58564d2f8ca0147e17b0a6c51eeb05e69a5b0fb594799cf887a2318d329e2655a4d57eaa86a280b456bffbdc3c9a4a2a97704f2521e14946
SSDEEP

3072:brR8jyXHfB7BT218jcSeK00OdDqOyyyXbO6E2Q1PoR7bVzNeeFqnqeZtvu3If:brR2yXtzP1OyycxELKpUwqnqom3If

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  af6bb29d73a992aba07adebb3abde1906b6e89e509a72e0e26c65a33ca069a2b
- Size
  
  261KB
- MD5
  
  d46c0072fc6f544cf36788b869c5d393
- SHA1
  
  f82aa2fde27c62de758ad1725e417ff1ab554e28
- SHA256
  
  af6bb29d73a992aba07adebb3abde1906b6e89e509a72e0e26c65a33ca069a2b
- SHA512
  
  230512cb048abdda58564d2f8ca0147e17b0a6c51eeb05e69a5b0fb594799cf887a2318d329e2655a4d57eaa86a280b456bffbdc3c9a4a2a97704f2521e14946
- SSDEEP
  
  3072:brR8jyXHfB7BT218jcSeK00OdDqOyyyXbO6E2Q1PoR7bVzNeeFqnqeZtvu3If:brR2yXtzP1OyycxELKpUwqnqom3If
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2