ef713d4b3d3d343f6e2d68313fb1d3d74695ee42546f2e1751d91c3849150f5a | Triage

Sharing

General

Target

ef713d4b3d3d343f6e2d68313fb1d3d74695ee42546f2e1751d91c3849150f5a
Size

313KB
Sample

221123-hwpabsee48
MD5

e467f222365390d45be6d45dafc47482
SHA1

cbf4624961919113fe7d0f58364757daaa14ccb6
SHA256

ef713d4b3d3d343f6e2d68313fb1d3d74695ee42546f2e1751d91c3849150f5a
SHA512

10f57e46ad24939c0d2be504e65e40ab1b4cf49de2cf78f41072bcdcca561aa3df32ac9ffe43cd831b3b5ce4d14c30660b914f6674592690390a148663ea1b77
SSDEEP

6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L2:/ryu6/eIo4vMResyEf0uP9d9UG02

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ef713d4b3d3d343f6e2d68313fb1d3d74695ee42546f2e1751d91c3849150f5a
- Size
  
  313KB
- MD5
  
  e467f222365390d45be6d45dafc47482
- SHA1
  
  cbf4624961919113fe7d0f58364757daaa14ccb6
- SHA256
  
  ef713d4b3d3d343f6e2d68313fb1d3d74695ee42546f2e1751d91c3849150f5a
- SHA512
  
  10f57e46ad24939c0d2be504e65e40ab1b4cf49de2cf78f41072bcdcca561aa3df32ac9ffe43cd831b3b5ce4d14c30660b914f6674592690390a148663ea1b77
- SSDEEP
  
  6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L2:/ryu6/eIo4vMResyEf0uP9d9UG02
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2