1afce6430ce2028791f16a5f6a29f3125540f7f52c993d9ae07818f27b930a75 | Triage

Sharing

General

Target

1afce6430ce2028791f16a5f6a29f3125540f7f52c993d9ae07818f27b930a75
Size

316KB
Sample

221029-s3nmgsddgk
MD5

e8e5544ed31a5a59867e21d171791b72
SHA1

78a9e1af299170600811d219ca86fa13f7b731d6
SHA256

1afce6430ce2028791f16a5f6a29f3125540f7f52c993d9ae07818f27b930a75
SHA512

34f6d3cf4a04857110bfe227cf57880b6798a07374308862358abc01ca4e253ab19badd686257bb7d1a3180aaaa8ff03c177f5236d130c198bb2f6195ff72f86
SSDEEP

6144:rr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYo:rr0kuveY3cY1cia66MGd0Vs9BdNf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1afce6430ce2028791f16a5f6a29f3125540f7f52c993d9ae07818f27b930a75
- Size
  
  316KB
- MD5
  
  e8e5544ed31a5a59867e21d171791b72
- SHA1
  
  78a9e1af299170600811d219ca86fa13f7b731d6
- SHA256
  
  1afce6430ce2028791f16a5f6a29f3125540f7f52c993d9ae07818f27b930a75
- SHA512
  
  34f6d3cf4a04857110bfe227cf57880b6798a07374308862358abc01ca4e253ab19badd686257bb7d1a3180aaaa8ff03c177f5236d130c198bb2f6195ff72f86
- SSDEEP
  
  6144:rr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYo:rr0kuveY3cY1cia66MGd0Vs9BdNf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2