e30f65e73be3fc0e0195d1981d0dc0cc64f3d4de6146aed9255707335dfb6acd | Triage

Sharing

General

Target

e30f65e73be3fc0e0195d1981d0dc0cc64f3d4de6146aed9255707335dfb6acd
Size

313KB
Sample

221123-h2ye7aeg63
MD5

135cd932f77c05482ed68d9525e7e542
SHA1

5abb5d1e5052857e4cd6dc421848a2cf9dcac6ba
SHA256

e30f65e73be3fc0e0195d1981d0dc0cc64f3d4de6146aed9255707335dfb6acd
SHA512

e898e6eb34a0f5df5b5ec13b74d036f6922d36324b40e340bfc5c4686be27f19e6ae60d2e4666624f461c088d5ffa0410e47633e92ba116d18eed747f3bb3265
SSDEEP

6144:vrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMo:vrRu6/eIo4t3PuFITKUAf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e30f65e73be3fc0e0195d1981d0dc0cc64f3d4de6146aed9255707335dfb6acd
- Size
  
  313KB
- MD5
  
  135cd932f77c05482ed68d9525e7e542
- SHA1
  
  5abb5d1e5052857e4cd6dc421848a2cf9dcac6ba
- SHA256
  
  e30f65e73be3fc0e0195d1981d0dc0cc64f3d4de6146aed9255707335dfb6acd
- SHA512
  
  e898e6eb34a0f5df5b5ec13b74d036f6922d36324b40e340bfc5c4686be27f19e6ae60d2e4666624f461c088d5ffa0410e47633e92ba116d18eed747f3bb3265
- SSDEEP
  
  6144:vrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMo:vrRu6/eIo4t3PuFITKUAf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2