bafa7974d67b710bef3a8661379cb79c66753acea0fecaad9b004f536768b0e2 | Triage

Sharing

General

Target

bafa7974d67b710bef3a8661379cb79c66753acea0fecaad9b004f536768b0e2
Size

316KB
Sample

221123-jla6dsba7t
MD5

bb2776277fb08031253861d7454c1d88
SHA1

db45141f0103b9092018548ce72b5f1f4d92960d
SHA256

bafa7974d67b710bef3a8661379cb79c66753acea0fecaad9b004f536768b0e2
SHA512

a5884379f8f13ab60b04debab78ebf2a875e04cfe9524facc3be9015be10f636e1be9f9aec3ee03411e817ea14d198d1c404669e6047d30e7a1efa9845ff559a
SSDEEP

6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVS:RrkkuveY3zhlV6tmDxzwVS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bafa7974d67b710bef3a8661379cb79c66753acea0fecaad9b004f536768b0e2
- Size
  
  316KB
- MD5
  
  bb2776277fb08031253861d7454c1d88
- SHA1
  
  db45141f0103b9092018548ce72b5f1f4d92960d
- SHA256
  
  bafa7974d67b710bef3a8661379cb79c66753acea0fecaad9b004f536768b0e2
- SHA512
  
  a5884379f8f13ab60b04debab78ebf2a875e04cfe9524facc3be9015be10f636e1be9f9aec3ee03411e817ea14d198d1c404669e6047d30e7a1efa9845ff559a
- SSDEEP
  
  6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVS:RrkkuveY3zhlV6tmDxzwVS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2