abd13629cb155d7a8f2fd6c7adbaa7404d1e8510e2811b8d40d3a66562533d99 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abd13629cb155d7a8f2fd6c7adbaa7404d1e8510e2811b8d40d3a66562533d99
Size

385KB
Sample

221107-gytr6abhc5
MD5

32a0e72ea474f5aba015f0c22cb6847e
SHA1

d3f422a17ddeb2dce48330828be5d9cadd6e2632
SHA256

abd13629cb155d7a8f2fd6c7adbaa7404d1e8510e2811b8d40d3a66562533d99
SHA512

94b77c48d2d6f99694bcec368b7c2f8e994d141d13489d91590710ee706bd2e059ba115b72b486502f698dc023f97babcd10bd213006c3972d43b13d39082b82
SSDEEP

12288:6hD815yXSvi/cidT+p6ULYU2zMqKgGadWBf:6h4eL/9SQU/5sGadM

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  abd13629cb155d7a8f2fd6c7adbaa7404d1e8510e2811b8d40d3a66562533d99
- Size
  
  385KB
- MD5
  
  32a0e72ea474f5aba015f0c22cb6847e
- SHA1
  
  d3f422a17ddeb2dce48330828be5d9cadd6e2632
- SHA256
  
  abd13629cb155d7a8f2fd6c7adbaa7404d1e8510e2811b8d40d3a66562533d99
- SHA512
  
  94b77c48d2d6f99694bcec368b7c2f8e994d141d13489d91590710ee706bd2e059ba115b72b486502f698dc023f97babcd10bd213006c3972d43b13d39082b82
- SSDEEP
  
  12288:6hD815yXSvi/cidT+p6ULYU2zMqKgGadWBf:6h4eL/9SQU/5sGadM
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2