e18d3a7d3541c3c8e51ac7b747b5b3f789a24a549329a5d68b67468f211fc89d | Triage

Sharing

General

Target

e18d3a7d3541c3c8e51ac7b747b5b3f789a24a549329a5d68b67468f211fc89d
Size

327KB
Sample

221123-h3dr6sac5v
MD5

2f01b1064335a2dd256b3be93bfc3ad2
SHA1

0ec65a2b9842d585154fceaf99a7af9920db092d
SHA256

e18d3a7d3541c3c8e51ac7b747b5b3f789a24a549329a5d68b67468f211fc89d
SHA512

4192de4ed01efa7e2577d7b662e9bbafe4770b508e6ef9cebdbbb67b46637caa332b757fe4f11e212e42f192bba3cfd9857af4e421a0d0370e4de9a515b5fd77
SSDEEP

6144:ar4f9uEo2S1YnQmCX492DkwNP3qpYFAvZm2iODkqdNho9a8eua1BQ9GXk4HVqW0:ar4Vu6/eIo41Zm2qo8UckXDVqW0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e18d3a7d3541c3c8e51ac7b747b5b3f789a24a549329a5d68b67468f211fc89d
- Size
  
  327KB
- MD5
  
  2f01b1064335a2dd256b3be93bfc3ad2
- SHA1
  
  0ec65a2b9842d585154fceaf99a7af9920db092d
- SHA256
  
  e18d3a7d3541c3c8e51ac7b747b5b3f789a24a549329a5d68b67468f211fc89d
- SHA512
  
  4192de4ed01efa7e2577d7b662e9bbafe4770b508e6ef9cebdbbb67b46637caa332b757fe4f11e212e42f192bba3cfd9857af4e421a0d0370e4de9a515b5fd77
- SSDEEP
  
  6144:ar4f9uEo2S1YnQmCX492DkwNP3qpYFAvZm2iODkqdNho9a8eua1BQ9GXk4HVqW0:ar4Vu6/eIo41Zm2qo8UckXDVqW0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2