baa2f844e60fb4b3d80fc2243c337568f21b709d21b5a86ffca5d1aa2e76e4b3 | Triage

Sharing

General

Target

baa2f844e60fb4b3d80fc2243c337568f21b709d21b5a86ffca5d1aa2e76e4b3
Size

316KB
Sample

221123-jlg9psff85
MD5

f621759b47a97178a86969218b596493
SHA1

f50a50e4e93bec937d6b32e7fae375a31469983b
SHA256

baa2f844e60fb4b3d80fc2243c337568f21b709d21b5a86ffca5d1aa2e76e4b3
SHA512

027bb00eaf5da3ad061bdd45de97b2578b22459f5115bf28e21db80efbd0612c9d246566a7ef6b0bb7740b82625a0751cdd9effa656e25d2ec34e4a35824b89a
SSDEEP

6144:drybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phop:drLkuveY3EMK9ObxD/06s5w3BLp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  baa2f844e60fb4b3d80fc2243c337568f21b709d21b5a86ffca5d1aa2e76e4b3
- Size
  
  316KB
- MD5
  
  f621759b47a97178a86969218b596493
- SHA1
  
  f50a50e4e93bec937d6b32e7fae375a31469983b
- SHA256
  
  baa2f844e60fb4b3d80fc2243c337568f21b709d21b5a86ffca5d1aa2e76e4b3
- SHA512
  
  027bb00eaf5da3ad061bdd45de97b2578b22459f5115bf28e21db80efbd0612c9d246566a7ef6b0bb7740b82625a0751cdd9effa656e25d2ec34e4a35824b89a
- SSDEEP
  
  6144:drybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phop:drLkuveY3EMK9ObxD/06s5w3BLp
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2