de3e91de70b3fd51396122aab364a1b7aff43fb6f71bbd66ffad53249c7e246d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de3e91de70b3fd51396122aab364a1b7aff43fb6f71bbd66ffad53249c7e246d
Size

327KB
Sample

221030-havvzsggar
MD5

936cfb204422773c3dbab38346c9c3d0
SHA1

04a737da8a05debef7b1aceb96d4a7939a514d5e
SHA256

de3e91de70b3fd51396122aab364a1b7aff43fb6f71bbd66ffad53249c7e246d
SHA512

62747b61dedaa01884dd4b39fe8a116b5f94f25c901bfb99036b422d7e63a74c8ca1bde9de65f04a1534ec32e81a72a20961060cb79ee1bdff0a985978e219f6
SSDEEP

6144:yrwbUzkuvcBYC47l2xjkCLZhnP5PFcFjYbxfX1wKFw9+1BFsdL+Fu1S:yrlkuveY3TAZhhPqFjYbxfOKF0+ZhFuE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  de3e91de70b3fd51396122aab364a1b7aff43fb6f71bbd66ffad53249c7e246d
- Size
  
  327KB
- MD5
  
  936cfb204422773c3dbab38346c9c3d0
- SHA1
  
  04a737da8a05debef7b1aceb96d4a7939a514d5e
- SHA256
  
  de3e91de70b3fd51396122aab364a1b7aff43fb6f71bbd66ffad53249c7e246d
- SHA512
  
  62747b61dedaa01884dd4b39fe8a116b5f94f25c901bfb99036b422d7e63a74c8ca1bde9de65f04a1534ec32e81a72a20961060cb79ee1bdff0a985978e219f6
- SSDEEP
  
  6144:yrwbUzkuvcBYC47l2xjkCLZhnP5PFcFjYbxfX1wKFw9+1BFsdL+Fu1S:yrlkuveY3TAZhhPqFjYbxfOKF0+ZhFuE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2