abe16b195d1075fae5b461d2b0e2f2bb2a44c9424bd3139fcb2235bf1f9b6207 | Triage

Sharing

General

Target

abe16b195d1075fae5b461d2b0e2f2bb2a44c9424bd3139fcb2235bf1f9b6207
Size

313KB
Sample

221123-js8egaga52
MD5

3bde828453d4d8685a3869eda50c0010
SHA1

bb70c5ecf5c92fd9bfc92152ace59f0476dbdc40
SHA256

abe16b195d1075fae5b461d2b0e2f2bb2a44c9424bd3139fcb2235bf1f9b6207
SHA512

581b6cfd465cb3c82ae2bc3c5281d4c6591748426903a91b308833f72271b7dd45da923393f68295ce5d384cbb4d5389db714193eac0c7a69b8966b886a3c78c
SSDEEP

6144:KrQ9uEo2S1YnQmCX492DkwNP3qpYF9Yj4d2rPVkBLLNIQxmI2tC:KrIu6/eIo4vMkkBfNtKtC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  abe16b195d1075fae5b461d2b0e2f2bb2a44c9424bd3139fcb2235bf1f9b6207
- Size
  
  313KB
- MD5
  
  3bde828453d4d8685a3869eda50c0010
- SHA1
  
  bb70c5ecf5c92fd9bfc92152ace59f0476dbdc40
- SHA256
  
  abe16b195d1075fae5b461d2b0e2f2bb2a44c9424bd3139fcb2235bf1f9b6207
- SHA512
  
  581b6cfd465cb3c82ae2bc3c5281d4c6591748426903a91b308833f72271b7dd45da923393f68295ce5d384cbb4d5389db714193eac0c7a69b8966b886a3c78c
- SSDEEP
  
  6144:KrQ9uEo2S1YnQmCX492DkwNP3qpYF9Yj4d2rPVkBLLNIQxmI2tC:KrIu6/eIo4vMkkBfNtKtC
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2