e7cfea8285c895021c1473eea13ba31074bb40c6f391988fc39ba0b29a6d29f3 | Triage

Sharing

General

Target

e7cfea8285c895021c1473eea13ba31074bb40c6f391988fc39ba0b29a6d29f3
Size

327KB
Sample

221123-hzx2msab6w
MD5

04be5281af26c0f939aad37fcf5a8b2e
SHA1

253e09736846c0676f08cbb5696ede5b830c1ee3
SHA256

e7cfea8285c895021c1473eea13ba31074bb40c6f391988fc39ba0b29a6d29f3
SHA512

8cd9b7d64bf63bee4825a259a95adca12b76b16ce98d3353b51a2861edf6e029a06a7d5f6da90da50e3633b429a8c202b6c249058316543d0756b12cd7ea7e12
SSDEEP

6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FU:Br4iu6/eIo4Rsw33AtsmQV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e7cfea8285c895021c1473eea13ba31074bb40c6f391988fc39ba0b29a6d29f3
- Size
  
  327KB
- MD5
  
  04be5281af26c0f939aad37fcf5a8b2e
- SHA1
  
  253e09736846c0676f08cbb5696ede5b830c1ee3
- SHA256
  
  e7cfea8285c895021c1473eea13ba31074bb40c6f391988fc39ba0b29a6d29f3
- SHA512
  
  8cd9b7d64bf63bee4825a259a95adca12b76b16ce98d3353b51a2861edf6e029a06a7d5f6da90da50e3633b429a8c202b6c249058316543d0756b12cd7ea7e12
- SSDEEP
  
  6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FU:Br4iu6/eIo4Rsw33AtsmQV
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2