ca3b1a32469216b648f9151844db32c33ef1d9191525cb6a0cfdfc16936c02ff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca3b1a32469216b648f9151844db32c33ef1d9191525cb6a0cfdfc16936c02ff
Size

316KB
Sample

221030-hbsf9aggel
MD5

92e15a55b888d5f0ddadc436e0508130
SHA1

469ec243f41fe80e79ee761b9e6cfdd56747b5a4
SHA256

ca3b1a32469216b648f9151844db32c33ef1d9191525cb6a0cfdfc16936c02ff
SHA512

e7c7d682c15c27e7d1931d3e6e766be23921b5ba5c63a21fc1ad0a109130fa12e4267ca549396460e6712d81e046d87a0bbb76666c1a658b1575cc882fe8fbfd
SSDEEP

6144:Or+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmim:OrXkuveY3z+U83tbLpmsgh/m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ca3b1a32469216b648f9151844db32c33ef1d9191525cb6a0cfdfc16936c02ff
- Size
  
  316KB
- MD5
  
  92e15a55b888d5f0ddadc436e0508130
- SHA1
  
  469ec243f41fe80e79ee761b9e6cfdd56747b5a4
- SHA256
  
  ca3b1a32469216b648f9151844db32c33ef1d9191525cb6a0cfdfc16936c02ff
- SHA512
  
  e7c7d682c15c27e7d1931d3e6e766be23921b5ba5c63a21fc1ad0a109130fa12e4267ca549396460e6712d81e046d87a0bbb76666c1a658b1575cc882fe8fbfd
- SSDEEP
  
  6144:Or+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmim:OrXkuveY3z+U83tbLpmsgh/m
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2