af032d9b339cb807d9ebf75c1cdc15b64ba228b5863556dcfedcb21b3133d29a | Triage

Sharing

General

Target

af032d9b339cb807d9ebf75c1cdc15b64ba228b5863556dcfedcb21b3133d29a
Size

327KB
Sample

221123-jrn97sbc7y
MD5

d1e6e8184d6fcb9823371a97076efd32
SHA1

a0b61bfce794a44d063ef4c71e03d91cfa7e6747
SHA256

af032d9b339cb807d9ebf75c1cdc15b64ba228b5863556dcfedcb21b3133d29a
SHA512

006a73f1d37ef02e8fe6b2e31b3200ea0fe75db7a8512229f7962253a99773aed069e468e5f3558bad1443d7bfa757fe82149696192786d2ab0f9d88dc6872bc
SSDEEP

6144:FrLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnXW:FrAkuveY3sz9V8wlCs0I7v1s2BlUm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  af032d9b339cb807d9ebf75c1cdc15b64ba228b5863556dcfedcb21b3133d29a
- Size
  
  327KB
- MD5
  
  d1e6e8184d6fcb9823371a97076efd32
- SHA1
  
  a0b61bfce794a44d063ef4c71e03d91cfa7e6747
- SHA256
  
  af032d9b339cb807d9ebf75c1cdc15b64ba228b5863556dcfedcb21b3133d29a
- SHA512
  
  006a73f1d37ef02e8fe6b2e31b3200ea0fe75db7a8512229f7962253a99773aed069e468e5f3558bad1443d7bfa757fe82149696192786d2ab0f9d88dc6872bc
- SSDEEP
  
  6144:FrLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnXW:FrAkuveY3sz9V8wlCs0I7v1s2BlUm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2