02491f2f0c41970781ee330ea4a2d8331dacefd6bd68598bf725eab00618b6bb | Triage

Sharing

General

Target

02491f2f0c41970781ee330ea4a2d8331dacefd6bd68598bf725eab00618b6bb
Size

315KB
Sample

221121-t4cgaada2x
MD5

2584981125a00877cb52c44270dbe870
SHA1

613dd251c8d94218870ccd340e115247a25dec1f
SHA256

02491f2f0c41970781ee330ea4a2d8331dacefd6bd68598bf725eab00618b6bb
SHA512

f3d8832e480a20dbc7783b992a7d38637db60e8843ac624a1537e866612a8c936fe2fbdde296f21765079d836494ad1f1a3e1de176994c034e93d1961a2b3945
SSDEEP

6144:5rpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9Uy:5rakuveY3hfaaLUsx4JkxjYJ2emrCz2d

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  02491f2f0c41970781ee330ea4a2d8331dacefd6bd68598bf725eab00618b6bb
- Size
  
  315KB
- MD5
  
  2584981125a00877cb52c44270dbe870
- SHA1
  
  613dd251c8d94218870ccd340e115247a25dec1f
- SHA256
  
  02491f2f0c41970781ee330ea4a2d8331dacefd6bd68598bf725eab00618b6bb
- SHA512
  
  f3d8832e480a20dbc7783b992a7d38637db60e8843ac624a1537e866612a8c936fe2fbdde296f21765079d836494ad1f1a3e1de176994c034e93d1961a2b3945
- SSDEEP
  
  6144:5rpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9Uy:5rakuveY3hfaaLUsx4JkxjYJ2emrCz2d
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2