4e4b620b2ad84e8d62724668a6bc42b4897820d0294a09a17d27d2c6425db07d | Triage

Sharing

General

Target

4e4b620b2ad84e8d62724668a6bc42b4897820d0294a09a17d27d2c6425db07d
Size

332KB
Sample

221030-egxrdabbg8
MD5

92695bb79d0789a9eddd361c63bc20c0
SHA1

036681f576f170e3f4268e7090f8983ff9bd978d
SHA256

4e4b620b2ad84e8d62724668a6bc42b4897820d0294a09a17d27d2c6425db07d
SHA512

0bce14d3d0707389a875a1fafdf452ccdbdc9808e8eb6f7e731ea8abfc3e9a11c8b82919ccfac039b3a64f6615e424328c07ef9a6c91fba59aaff842296a54f5
SSDEEP

6144:XJ+i72bgRlm5GUUQFJVLmhTSax02YXum5wRuUfEHa2nX6Ttm2MeAM:XJ+iSeQFJVyH1mS1MH9XV2MeAM

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  4e4b620b2ad84e8d62724668a6bc42b4897820d0294a09a17d27d2c6425db07d
- Size
  
  332KB
- MD5
  
  92695bb79d0789a9eddd361c63bc20c0
- SHA1
  
  036681f576f170e3f4268e7090f8983ff9bd978d
- SHA256
  
  4e4b620b2ad84e8d62724668a6bc42b4897820d0294a09a17d27d2c6425db07d
- SHA512
  
  0bce14d3d0707389a875a1fafdf452ccdbdc9808e8eb6f7e731ea8abfc3e9a11c8b82919ccfac039b3a64f6615e424328c07ef9a6c91fba59aaff842296a54f5
- SSDEEP
  
  6144:XJ+i72bgRlm5GUUQFJVLmhTSax02YXum5wRuUfEHa2nX6Ttm2MeAM:XJ+iSeQFJVyH1mS1MH9XV2MeAM
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2