ae20ab4ca2cfe296cb9082a2af3a70f249159df0ac781626b372dc60f732fb1a | Triage

Sharing

General

Target

ae20ab4ca2cfe296cb9082a2af3a70f249159df0ac781626b372dc60f732fb1a
Size

333KB
Sample

221123-jr5l7abc9w
MD5

01e841ca3cb702d390bf960729041270
SHA1

6e63ff43f08b66f7792b968f4ba5156c6ee69dd3
SHA256

ae20ab4ca2cfe296cb9082a2af3a70f249159df0ac781626b372dc60f732fb1a
SHA512

6b3d5ab0652df72dfc430a0f08bd1808cfb5b8ee683a9efb0632664e3034f9db6f883eec13198f65946fc10270f94e00c1f224ff206b800e51ed1eb6fa0ba233
SSDEEP

6144:lrv3c7bUzkuvcBYC47l2xbKBFp6nGFO5K9eX+txEjp0YyJve6Vm7:lrv3cwkuveY3EKLlg5ulEGYivegm7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ae20ab4ca2cfe296cb9082a2af3a70f249159df0ac781626b372dc60f732fb1a
- Size
  
  333KB
- MD5
  
  01e841ca3cb702d390bf960729041270
- SHA1
  
  6e63ff43f08b66f7792b968f4ba5156c6ee69dd3
- SHA256
  
  ae20ab4ca2cfe296cb9082a2af3a70f249159df0ac781626b372dc60f732fb1a
- SHA512
  
  6b3d5ab0652df72dfc430a0f08bd1808cfb5b8ee683a9efb0632664e3034f9db6f883eec13198f65946fc10270f94e00c1f224ff206b800e51ed1eb6fa0ba233
- SSDEEP
  
  6144:lrv3c7bUzkuvcBYC47l2xbKBFp6nGFO5K9eX+txEjp0YyJve6Vm7:lrv3cwkuveY3EKLlg5ulEGYivegm7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2