effaeaf1a710fc5304ba84c9d62714ea3bfb4f189ae9ed7dfaedc928a83e8ca4 | Triage

Sharing

General

Target

effaeaf1a710fc5304ba84c9d62714ea3bfb4f189ae9ed7dfaedc928a83e8ca4
Size

313KB
Sample

221123-hwgkgsaa3v
MD5

ec08e3f81a3933ab26de286c3e8665ff
SHA1

1e92aa16de356f64acde695454897bdbed1ca87c
SHA256

effaeaf1a710fc5304ba84c9d62714ea3bfb4f189ae9ed7dfaedc928a83e8ca4
SHA512

4edd36fcf94e879d1a5d2f524c45548d3723dc546792768c970715e02b1468aaf6ff599f5c6bd8082a1c84dbdda81f9151fa974be21bc7ec76440c508e4d4ca8
SSDEEP

6144:zrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSg:zrkFu6/eIo4mdt2M/lUevAzicf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  effaeaf1a710fc5304ba84c9d62714ea3bfb4f189ae9ed7dfaedc928a83e8ca4
- Size
  
  313KB
- MD5
  
  ec08e3f81a3933ab26de286c3e8665ff
- SHA1
  
  1e92aa16de356f64acde695454897bdbed1ca87c
- SHA256
  
  effaeaf1a710fc5304ba84c9d62714ea3bfb4f189ae9ed7dfaedc928a83e8ca4
- SHA512
  
  4edd36fcf94e879d1a5d2f524c45548d3723dc546792768c970715e02b1468aaf6ff599f5c6bd8082a1c84dbdda81f9151fa974be21bc7ec76440c508e4d4ca8
- SSDEEP
  
  6144:zrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSg:zrkFu6/eIo4mdt2M/lUevAzicf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2