e1a135ecaf26d80f9f9f387c2bffef5bdfc451cf564e8cbdf6b38e6edf5fda6d | Triage

Sharing

General

Target

e1a135ecaf26d80f9f9f387c2bffef5bdfc451cf564e8cbdf6b38e6edf5fda6d
Size

313KB
Sample

221123-h3b9caeg82
MD5

364c3e4c51b14d95aa123ad740055d2b
SHA1

196a655e925d34e1d41ad929d26cb8758ab9cedf
SHA256

e1a135ecaf26d80f9f9f387c2bffef5bdfc451cf564e8cbdf6b38e6edf5fda6d
SHA512

1c497a63e44c995b509cd1bf2c46ea0431467d611f1ac9024d76157031b3b7709f37f7367440f7e78b99e19bf0f66f937d1dc69b38298b3ee4f93eca06cf33a9
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYA:Ark4u6/eIo4nlu7trxFtApfgMyrpjYA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1a135ecaf26d80f9f9f387c2bffef5bdfc451cf564e8cbdf6b38e6edf5fda6d
- Size
  
  313KB
- MD5
  
  364c3e4c51b14d95aa123ad740055d2b
- SHA1
  
  196a655e925d34e1d41ad929d26cb8758ab9cedf
- SHA256
  
  e1a135ecaf26d80f9f9f387c2bffef5bdfc451cf564e8cbdf6b38e6edf5fda6d
- SHA512
  
  1c497a63e44c995b509cd1bf2c46ea0431467d611f1ac9024d76157031b3b7709f37f7367440f7e78b99e19bf0f66f937d1dc69b38298b3ee4f93eca06cf33a9
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYA:Ark4u6/eIo4nlu7trxFtApfgMyrpjYA
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2