e470d16f9c44baeca3b6d582d4366240d569a949da2cce2a3c40aeebcfc71707 | Triage

Sharing

General

Target

e470d16f9c44baeca3b6d582d4366240d569a949da2cce2a3c40aeebcfc71707
Size

327KB
Sample

221123-h2c49aac2z
MD5

83f24523ce97b305d9f0a4f5e549ca46
SHA1

d15ae919716517a522465b697507605a11c3c123
SHA256

e470d16f9c44baeca3b6d582d4366240d569a949da2cce2a3c40aeebcfc71707
SHA512

2368c8cc0c012322a0529575391091eac3b353034db1c3c118002d451ff4a943939f7f313884b3045d81f48fcd0efeed40c9cfaac1bf0a974b375264c48b96bc
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fm:Jr4iu6/eIo4Rsw33AtsmQ/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e470d16f9c44baeca3b6d582d4366240d569a949da2cce2a3c40aeebcfc71707
- Size
  
  327KB
- MD5
  
  83f24523ce97b305d9f0a4f5e549ca46
- SHA1
  
  d15ae919716517a522465b697507605a11c3c123
- SHA256
  
  e470d16f9c44baeca3b6d582d4366240d569a949da2cce2a3c40aeebcfc71707
- SHA512
  
  2368c8cc0c012322a0529575391091eac3b353034db1c3c118002d451ff4a943939f7f313884b3045d81f48fcd0efeed40c9cfaac1bf0a974b375264c48b96bc
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fm:Jr4iu6/eIo4Rsw33AtsmQ/
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2