b7e2e379add9f95ff0fcd7253cd143a9ce8ec862bba49e551c8971ecc68d7fac | Triage

Sharing

General

Target

b7e2e379add9f95ff0fcd7253cd143a9ce8ec862bba49e551c8971ecc68d7fac
Size

326KB
Sample

221123-jml92sfg45
MD5

e70d4c125a66e8c9bbd2085425d40b26
SHA1

5a919e9c4bbbf898e7fa956f73acb2c23ddc3cec
SHA256

b7e2e379add9f95ff0fcd7253cd143a9ce8ec862bba49e551c8971ecc68d7fac
SHA512

c246ea298726e4effee386e383a81033e2e64287ca774c11ede1e2c33ca81c95a508f3fdd6a2dc071967759ea212e56a4f35c5446922dbdf452caf8368647d81
SSDEEP

6144:6r4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgI:6r4gu6/eIo4nULZKMRwxuPfk6A

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b7e2e379add9f95ff0fcd7253cd143a9ce8ec862bba49e551c8971ecc68d7fac
- Size
  
  326KB
- MD5
  
  e70d4c125a66e8c9bbd2085425d40b26
- SHA1
  
  5a919e9c4bbbf898e7fa956f73acb2c23ddc3cec
- SHA256
  
  b7e2e379add9f95ff0fcd7253cd143a9ce8ec862bba49e551c8971ecc68d7fac
- SHA512
  
  c246ea298726e4effee386e383a81033e2e64287ca774c11ede1e2c33ca81c95a508f3fdd6a2dc071967759ea212e56a4f35c5446922dbdf452caf8368647d81
- SSDEEP
  
  6144:6r4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgI:6r4gu6/eIo4nULZKMRwxuPfk6A
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2