ba8213f1ee27ef4c5097bf8de5ef54a1e5d8397c317383e86d475dd0aac70f3e | Triage

Sharing

General

Target

ba8213f1ee27ef4c5097bf8de5ef54a1e5d8397c317383e86d475dd0aac70f3e
Size

327KB
Sample

221123-jlk1laba8s
MD5

e41c12cbb850c4f989bda70c387c3a5e
SHA1

8b8c4bf9ad247fb8ec810dc63ce3b5e201aceeae
SHA256

ba8213f1ee27ef4c5097bf8de5ef54a1e5d8397c317383e86d475dd0aac70f3e
SHA512

d9a2fd3b78279cf8970bb6fce8ee58340420d5907b89080c617a52e573b06ce2b5c32ecc105aec4a188e2fe73521984dabaafbcc0e05e8c649bd9cbe2eaf714c
SSDEEP

6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa:pr4iu6/eIo4Rsw33AtsmQH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba8213f1ee27ef4c5097bf8de5ef54a1e5d8397c317383e86d475dd0aac70f3e
- Size
  
  327KB
- MD5
  
  e41c12cbb850c4f989bda70c387c3a5e
- SHA1
  
  8b8c4bf9ad247fb8ec810dc63ce3b5e201aceeae
- SHA256
  
  ba8213f1ee27ef4c5097bf8de5ef54a1e5d8397c317383e86d475dd0aac70f3e
- SHA512
  
  d9a2fd3b78279cf8970bb6fce8ee58340420d5907b89080c617a52e573b06ce2b5c32ecc105aec4a188e2fe73521984dabaafbcc0e05e8c649bd9cbe2eaf714c
- SSDEEP
  
  6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa:pr4iu6/eIo4Rsw33AtsmQH
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2