ba6c343f813d13870c4d811459585f76c678c71fb32a24b3c13f6a26fa8d28e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

188KB
Sample

221105-esjznaffbn
MD5

2af941337bcd503df74b5e8aaaf06141
SHA1

e53d89eef562d2e2766310ddb6c7b58c3159fe9b
SHA256

ba6c343f813d13870c4d811459585f76c678c71fb32a24b3c13f6a26fa8d28e0
SHA512

a257e62c8e9d6e65c2356dbaa1abf993ae1cbfe1c8d8f8654a5f631d323c3ebd0a693f7f9f3b60dffbf47fd29240a6a13c5d44d5223c1ad16cb2796db14eac16
SSDEEP

3072:qSrFD0QAGq6muqIpbmBs+kxIVwUwFfWG+dH0xcOqwV4IXqWTVHe3RSfkb5rYZAvj:0QA4WamBhoIV1AfM0O9YDHeykbZjmn4R

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  tmp
- Size
  
  188KB
- MD5
  
  2af941337bcd503df74b5e8aaaf06141
- SHA1
  
  e53d89eef562d2e2766310ddb6c7b58c3159fe9b
- SHA256
  
  ba6c343f813d13870c4d811459585f76c678c71fb32a24b3c13f6a26fa8d28e0
- SHA512
  
  a257e62c8e9d6e65c2356dbaa1abf993ae1cbfe1c8d8f8654a5f631d323c3ebd0a693f7f9f3b60dffbf47fd29240a6a13c5d44d5223c1ad16cb2796db14eac16
- SSDEEP
  
  3072:qSrFD0QAGq6muqIpbmBs+kxIVwUwFfWG+dH0xcOqwV4IXqWTVHe3RSfkb5rYZAvj:0QA4WamBhoIV1AfM0O9YDHeykbZjmn4R
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2