e3cdaf20547f3f2a047f7c45ffd2842cc2901fc658bbfec0caa3ded6959e3c87 | Triage

Sharing

General

Target

e3cdaf20547f3f2a047f7c45ffd2842cc2901fc658bbfec0caa3ded6959e3c87
Size

325KB
Sample

221030-hahknafga3
MD5

4d8c55538badde3c2cbea6ed649f0710
SHA1

c56b3b909383aad5dae7025b2355b50e048626b8
SHA256

e3cdaf20547f3f2a047f7c45ffd2842cc2901fc658bbfec0caa3ded6959e3c87
SHA512

d50c3b797e721069ecd08044a0e8b254814bc18779942f8002bdcf9369b9e143824d2f54770c832f4ae50306798352b12f87b22b61ec7d4c2d0f2cc2349ba7f7
SSDEEP

6144:8r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5os:8r1B3u6/eIo4ArVUBQCCYOqmO5os

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e3cdaf20547f3f2a047f7c45ffd2842cc2901fc658bbfec0caa3ded6959e3c87
- Size
  
  325KB
- MD5
  
  4d8c55538badde3c2cbea6ed649f0710
- SHA1
  
  c56b3b909383aad5dae7025b2355b50e048626b8
- SHA256
  
  e3cdaf20547f3f2a047f7c45ffd2842cc2901fc658bbfec0caa3ded6959e3c87
- SHA512
  
  d50c3b797e721069ecd08044a0e8b254814bc18779942f8002bdcf9369b9e143824d2f54770c832f4ae50306798352b12f87b22b61ec7d4c2d0f2cc2349ba7f7
- SSDEEP
  
  6144:8r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5os:8r1B3u6/eIo4ArVUBQCCYOqmO5os
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2