ea6100aafc02bec68c1aab69984422115af9a1b6047ab623d0ae4c71424abcf6 | Triage

Sharing

General

Target

ea6100aafc02bec68c1aab69984422115af9a1b6047ab623d0ae4c71424abcf6
Size

327KB
Sample

221123-hyqk6sef42
MD5

72fd487d6c2f596ab9f99e79e189830d
SHA1

07d6c94cd17e3cf79171f8b3d6ced1323f5c76a8
SHA256

ea6100aafc02bec68c1aab69984422115af9a1b6047ab623d0ae4c71424abcf6
SHA512

e523bec7fa0fafea7e6b24025e29164fa67f9926d1f939047b7b94cfe267c92ba7528668ea95135afc579f6b7dcfa97ecac7930efccaf2102bbbe716cd157841
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F2j:Rr4iu6/eIo4Rsw33AtsmQrj

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ea6100aafc02bec68c1aab69984422115af9a1b6047ab623d0ae4c71424abcf6
- Size
  
  327KB
- MD5
  
  72fd487d6c2f596ab9f99e79e189830d
- SHA1
  
  07d6c94cd17e3cf79171f8b3d6ced1323f5c76a8
- SHA256
  
  ea6100aafc02bec68c1aab69984422115af9a1b6047ab623d0ae4c71424abcf6
- SHA512
  
  e523bec7fa0fafea7e6b24025e29164fa67f9926d1f939047b7b94cfe267c92ba7528668ea95135afc579f6b7dcfa97ecac7930efccaf2102bbbe716cd157841
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F2j:Rr4iu6/eIo4Rsw33AtsmQrj
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2