e67fd1e09ee5a50ea5f0152f57074df289bd0bd15b1697f0a58f584d05668d21 | Triage

Sharing

General

Target

e67fd1e09ee5a50ea5f0152f57074df289bd0bd15b1697f0a58f584d05668d21
Size

316KB
Sample

221123-h1dz6aab7y
MD5

b897a6ed05a0016909ed5683e811a0b7
SHA1

b704e687ae405b696c07b54e70abab1191208755
SHA256

e67fd1e09ee5a50ea5f0152f57074df289bd0bd15b1697f0a58f584d05668d21
SHA512

aad40aff69303720ad3bb16705d0d2a9623db7ad150ddd31b335692ae5a91f7fdb48124b049fcf8687ea2af502d87d54188e3d57599ded3347e4a6711a6d39a7
SSDEEP

6144:mrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZX:mrdkuveY3CvI5Zdkj6OEu1HSX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e67fd1e09ee5a50ea5f0152f57074df289bd0bd15b1697f0a58f584d05668d21
- Size
  
  316KB
- MD5
  
  b897a6ed05a0016909ed5683e811a0b7
- SHA1
  
  b704e687ae405b696c07b54e70abab1191208755
- SHA256
  
  e67fd1e09ee5a50ea5f0152f57074df289bd0bd15b1697f0a58f584d05668d21
- SHA512
  
  aad40aff69303720ad3bb16705d0d2a9623db7ad150ddd31b335692ae5a91f7fdb48124b049fcf8687ea2af502d87d54188e3d57599ded3347e4a6711a6d39a7
- SSDEEP
  
  6144:mrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZX:mrdkuveY3CvI5Zdkj6OEu1HSX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2