e9df7e06844b8811e89388e9db4eb134b50be53004faea4fdaab25d924595cd9 | Triage

Sharing

General

Target

e9df7e06844b8811e89388e9db4eb134b50be53004faea4fdaab25d924595cd9
Size

320KB
Sample

221123-hyw3ysab2z
MD5

aa2c85bd88dc672482232bd583fe4048
SHA1

27b949844b0575968c818a52674068a321f49b06
SHA256

e9df7e06844b8811e89388e9db4eb134b50be53004faea4fdaab25d924595cd9
SHA512

6c5bca5893e2eaa9b66ab551adc8cbf3c429d2971ca632bc2f5fcb225320915c5023adb31f46df0715af720ef80d1a068cdff400bedb81af0baf5b82d080c5eb
SSDEEP

6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTst2:prVtkuveY3aEHF7lLIpkHk2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e9df7e06844b8811e89388e9db4eb134b50be53004faea4fdaab25d924595cd9
- Size
  
  320KB
- MD5
  
  aa2c85bd88dc672482232bd583fe4048
- SHA1
  
  27b949844b0575968c818a52674068a321f49b06
- SHA256
  
  e9df7e06844b8811e89388e9db4eb134b50be53004faea4fdaab25d924595cd9
- SHA512
  
  6c5bca5893e2eaa9b66ab551adc8cbf3c429d2971ca632bc2f5fcb225320915c5023adb31f46df0715af720ef80d1a068cdff400bedb81af0baf5b82d080c5eb
- SSDEEP
  
  6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTst2:prVtkuveY3aEHF7lLIpkHk2
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2