e1d1244fa5d7703f14f2e3100cf9def004c667c3fdc04480881c1bff581a9967 | Triage

Sharing

General

Target

e1d1244fa5d7703f14f2e3100cf9def004c667c3fdc04480881c1bff581a9967
Size

316KB
Sample

221123-h3a2aaac5s
MD5

4123b8e8a7a613856b77f093861b79b2
SHA1

d782b00528d2fdba39276f0a26f3aefc2a4df5b4
SHA256

e1d1244fa5d7703f14f2e3100cf9def004c667c3fdc04480881c1bff581a9967
SHA512

6513c72a47330efd8bcccbc8034da1383fa221e70690e314f1cb4b94ffee7b780a1d66d9aa3646a17b62037eabf56a9e34ec042e88f098babaefb05098f603ee
SSDEEP

6144:7r/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYv:7r0kuveY3cY1cia66MGd0Vs9BdNU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1d1244fa5d7703f14f2e3100cf9def004c667c3fdc04480881c1bff581a9967
- Size
  
  316KB
- MD5
  
  4123b8e8a7a613856b77f093861b79b2
- SHA1
  
  d782b00528d2fdba39276f0a26f3aefc2a4df5b4
- SHA256
  
  e1d1244fa5d7703f14f2e3100cf9def004c667c3fdc04480881c1bff581a9967
- SHA512
  
  6513c72a47330efd8bcccbc8034da1383fa221e70690e314f1cb4b94ffee7b780a1d66d9aa3646a17b62037eabf56a9e34ec042e88f098babaefb05098f603ee
- SSDEEP
  
  6144:7r/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYv:7r0kuveY3cY1cia66MGd0Vs9BdNU
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2