bef11ed5bfa2b6d64777b6e405cec04834dc3f057eba760f2e41456dea1d675c | Triage

Sharing

General

Target

bef11ed5bfa2b6d64777b6e405cec04834dc3f057eba760f2e41456dea1d675c
Size

325KB
Sample

221123-jjm26sba2t
MD5

4ce21fed5b3c5c02a0428f69ecbc3d07
SHA1

834f655fe4d3030dd79874f82ed25e8c2319b2a8
SHA256

bef11ed5bfa2b6d64777b6e405cec04834dc3f057eba760f2e41456dea1d675c
SHA512

57b11e903fc26ad50ddb221ce69a174ebfc702773fb62364410ce08dedd6dffe6921372226fddff791736d48945282ddfef0c487ad63c14ca8440777792c75f9
SSDEEP

6144:cr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5ow:cr1B3u6/eIo4ArVUBQCCYOqmO5ow

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bef11ed5bfa2b6d64777b6e405cec04834dc3f057eba760f2e41456dea1d675c
- Size
  
  325KB
- MD5
  
  4ce21fed5b3c5c02a0428f69ecbc3d07
- SHA1
  
  834f655fe4d3030dd79874f82ed25e8c2319b2a8
- SHA256
  
  bef11ed5bfa2b6d64777b6e405cec04834dc3f057eba760f2e41456dea1d675c
- SHA512
  
  57b11e903fc26ad50ddb221ce69a174ebfc702773fb62364410ce08dedd6dffe6921372226fddff791736d48945282ddfef0c487ad63c14ca8440777792c75f9
- SSDEEP
  
  6144:cr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5ow:cr1B3u6/eIo4ArVUBQCCYOqmO5ow
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2