ae8ee6f6d14b8a0bc008f78fe56ca88dc354bb9da73b62d1ae0406316465c84b | Triage

Sharing

General

Target

ae8ee6f6d14b8a0bc008f78fe56ca88dc354bb9da73b62d1ae0406316465c84b
Size

315KB
Sample

221123-jrv3rafh89
MD5

0e51c2708aa28abdc5b1940739421c99
SHA1

246e19a2ee08994585f1917b46a5bd806109ea27
SHA256

ae8ee6f6d14b8a0bc008f78fe56ca88dc354bb9da73b62d1ae0406316465c84b
SHA512

fff8e2f38270a54ad39e2976b7bceeccd4804881e3222a7e4627051d8feabaef97ce333a2a101a0bed3ebbd367569921030dd4b5676e8836db6f6856d43e590b
SSDEEP

6144:RrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9UH:RrakuveY3hfaaLUsx4JkxjYJ2emrCz2I

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ae8ee6f6d14b8a0bc008f78fe56ca88dc354bb9da73b62d1ae0406316465c84b
- Size
  
  315KB
- MD5
  
  0e51c2708aa28abdc5b1940739421c99
- SHA1
  
  246e19a2ee08994585f1917b46a5bd806109ea27
- SHA256
  
  ae8ee6f6d14b8a0bc008f78fe56ca88dc354bb9da73b62d1ae0406316465c84b
- SHA512
  
  fff8e2f38270a54ad39e2976b7bceeccd4804881e3222a7e4627051d8feabaef97ce333a2a101a0bed3ebbd367569921030dd4b5676e8836db6f6856d43e590b
- SSDEEP
  
  6144:RrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9UH:RrakuveY3hfaaLUsx4JkxjYJ2emrCz2I
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2