e1b454328af72eea67bbf8a5deb3c2076b01404691ffae9373b8bd8f07d3140f | Triage

Sharing

General

Target

e1b454328af72eea67bbf8a5deb3c2076b01404691ffae9373b8bd8f07d3140f
Size

312KB
Sample

221123-h3bmtaeg79
MD5

adb81062df7836c022c93c50472b059c
SHA1

501b11c9ebd8bcd807bd0795bee9ca9dbabf0ec7
SHA256

e1b454328af72eea67bbf8a5deb3c2076b01404691ffae9373b8bd8f07d3140f
SHA512

33e251ee39df3113f4595e868f6f5efbc51dbd2165a648be58ac372175072dbf0142e22df34d729e4662929c47e35fcfab413bebb348e0f2852d3063e45a8087
SSDEEP

6144:crJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUz9:crfu6/eIo4XwlWKM231t5UnRr3DdRp5c

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e1b454328af72eea67bbf8a5deb3c2076b01404691ffae9373b8bd8f07d3140f
- Size
  
  312KB
- MD5
  
  adb81062df7836c022c93c50472b059c
- SHA1
  
  501b11c9ebd8bcd807bd0795bee9ca9dbabf0ec7
- SHA256
  
  e1b454328af72eea67bbf8a5deb3c2076b01404691ffae9373b8bd8f07d3140f
- SHA512
  
  33e251ee39df3113f4595e868f6f5efbc51dbd2165a648be58ac372175072dbf0142e22df34d729e4662929c47e35fcfab413bebb348e0f2852d3063e45a8087
- SSDEEP
  
  6144:crJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUz9:crfu6/eIo4XwlWKM231t5UnRr3DdRp5c
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2