edce9abf91916e7fe841d6d7b76fbfbedd751568d91688d556faa11c16699991 | Triage

Sharing

General

Target

edce9abf91916e7fe841d6d7b76fbfbedd751568d91688d556faa11c16699991
Size

327KB
Sample

221123-hxdvzsaa6t
MD5

b2def9c7b768a7b470d617e1019055e6
SHA1

197de90a5685e22f1c7a77e06e3932c1bf944e28
SHA256

edce9abf91916e7fe841d6d7b76fbfbedd751568d91688d556faa11c16699991
SHA512

b4fb26e60a091fb534d753e813ac419e9828e878c1210a898df2a35aae8944ec50b62bb8c24f346a2bc9e02989760694adef3bf8a2e50c9245f8e0626d935ff2
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FV:Rr4iu6/eIo4Rsw33AtsmQw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  edce9abf91916e7fe841d6d7b76fbfbedd751568d91688d556faa11c16699991
- Size
  
  327KB
- MD5
  
  b2def9c7b768a7b470d617e1019055e6
- SHA1
  
  197de90a5685e22f1c7a77e06e3932c1bf944e28
- SHA256
  
  edce9abf91916e7fe841d6d7b76fbfbedd751568d91688d556faa11c16699991
- SHA512
  
  b4fb26e60a091fb534d753e813ac419e9828e878c1210a898df2a35aae8944ec50b62bb8c24f346a2bc9e02989760694adef3bf8a2e50c9245f8e0626d935ff2
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FV:Rr4iu6/eIo4Rsw33AtsmQw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2