af7d4c3c980a5ec88bb12ca410d5ea47d90ff7ec67e8328647b7ad863f00a3c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af7d4c3c980a5ec88bb12ca410d5ea47d90ff7ec67e8328647b7ad863f00a3c4
Size

323KB
Sample

221029-ss397accd3
MD5

05a3c74221aa7f73b6da8b3411e17f95
SHA1

213956438714bcce0e00fb8182c55d376fd34bdb
SHA256

af7d4c3c980a5ec88bb12ca410d5ea47d90ff7ec67e8328647b7ad863f00a3c4
SHA512

07516e5d739406009424d454875545c59608407c8b5c916ef66166777de21a0af20525e828751ab353829b71e26b79d8f5a02248420bde513ab60563976ec60d
SSDEEP

6144:BSZ6xvK0kSGGic4Gct50MrABmIgs2VSajzrCFDSE:BlC0kS+mctnIgTSajz+FDSE

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  af7d4c3c980a5ec88bb12ca410d5ea47d90ff7ec67e8328647b7ad863f00a3c4
- Size
  
  323KB
- MD5
  
  05a3c74221aa7f73b6da8b3411e17f95
- SHA1
  
  213956438714bcce0e00fb8182c55d376fd34bdb
- SHA256
  
  af7d4c3c980a5ec88bb12ca410d5ea47d90ff7ec67e8328647b7ad863f00a3c4
- SHA512
  
  07516e5d739406009424d454875545c59608407c8b5c916ef66166777de21a0af20525e828751ab353829b71e26b79d8f5a02248420bde513ab60563976ec60d
- SSDEEP
  
  6144:BSZ6xvK0kSGGic4Gct50MrABmIgs2VSajzrCFDSE:BlC0kS+mctnIgTSajz+FDSE
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2