b3aa8dfd365c0e1ecc6699aab0bcea7a2f6f77bccc0cf73b6b6394acef2a4acd | Triage

Sharing

General

Target

b3aa8dfd365c0e1ecc6699aab0bcea7a2f6f77bccc0cf73b6b6394acef2a4acd
Size

326KB
Sample

221123-jpm95afg99
MD5

c9eb8a69b6e9e51b852b37fb0991b6fe
SHA1

b08dd1ee243a14b098940c816e9810817466f708
SHA256

b3aa8dfd365c0e1ecc6699aab0bcea7a2f6f77bccc0cf73b6b6394acef2a4acd
SHA512

c39a87d5cb21b6278fd5a5f6cb4b00695e434e2a5e9db989a66cb999571e1b9b8989a41fd4a95d18816356c7cb4ef94d3a1fcbad2b4551c5f938555ef57ffb5d
SSDEEP

6144:er469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJmah:er4iu6/eIo44O0W2UY2yyh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b3aa8dfd365c0e1ecc6699aab0bcea7a2f6f77bccc0cf73b6b6394acef2a4acd
- Size
  
  326KB
- MD5
  
  c9eb8a69b6e9e51b852b37fb0991b6fe
- SHA1
  
  b08dd1ee243a14b098940c816e9810817466f708
- SHA256
  
  b3aa8dfd365c0e1ecc6699aab0bcea7a2f6f77bccc0cf73b6b6394acef2a4acd
- SHA512
  
  c39a87d5cb21b6278fd5a5f6cb4b00695e434e2a5e9db989a66cb999571e1b9b8989a41fd4a95d18816356c7cb4ef94d3a1fcbad2b4551c5f938555ef57ffb5d
- SSDEEP
  
  6144:er469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJmah:er4iu6/eIo44O0W2UY2yyh
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2