e02a1ef68fad31b47a3f5f750fe3c307032c7d74217ba0aa1d763789009743fc | Triage

Sharing

General

Target

e02a1ef68fad31b47a3f5f750fe3c307032c7d74217ba0aa1d763789009743fc
Size

327KB
Sample

221123-h3zpmseh26
MD5

459b37b88f88f73a792db4fdf83e6177
SHA1

d25ea9695cee9248d86ccbbb15b6124bf38fe04d
SHA256

e02a1ef68fad31b47a3f5f750fe3c307032c7d74217ba0aa1d763789009743fc
SHA512

a252fddda43411f07acff0d8c15272bff31fd4cb8c171032b4d8e50b5673faa23349acc99681a4d6f13fcbbe0ea9fe69023e2d3b8f7e2f8918d1fe061068a105
SSDEEP

6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fx:Br4iu6/eIo4Rsw33AtsmQY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e02a1ef68fad31b47a3f5f750fe3c307032c7d74217ba0aa1d763789009743fc
- Size
  
  327KB
- MD5
  
  459b37b88f88f73a792db4fdf83e6177
- SHA1
  
  d25ea9695cee9248d86ccbbb15b6124bf38fe04d
- SHA256
  
  e02a1ef68fad31b47a3f5f750fe3c307032c7d74217ba0aa1d763789009743fc
- SHA512
  
  a252fddda43411f07acff0d8c15272bff31fd4cb8c171032b4d8e50b5673faa23349acc99681a4d6f13fcbbe0ea9fe69023e2d3b8f7e2f8918d1fe061068a105
- SSDEEP
  
  6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fx:Br4iu6/eIo4Rsw33AtsmQY
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2