3aeb5ba1fd445a3be1448c8c844f99cfd7f9a1b1409af3cdf9ceec5ff3d7696b | Triage

Sharing

General

Target

3aeb5ba1fd445a3be1448c8c844f99cfd7f9a1b1409af3cdf9ceec5ff3d7696b
Size

322KB
Sample

221123-kfv42sha59
MD5

a6cf82c35edfee1fc1862bc86ae0dcfb
SHA1

942c19d46c4440865dea69d34068113cf65b9191
SHA256

3aeb5ba1fd445a3be1448c8c844f99cfd7f9a1b1409af3cdf9ceec5ff3d7696b
SHA512

1ae1aa116a76a8942adccf5b36fdbc40698d07d698cb7d016e6a0f5694f971074690b50a8f772b4cb715000489a4b15e06eed07db4dbb043853d4c0ba531af7b
SSDEEP

6144:IrV49uEo2S1YnQmCX492DkwNP3qpYFkKQdF8lgywXW/XK11AVBZ5jhqUnm8xc9o:IrVQu6/eIo4qQdF8lEeXK11AZDqUmp9o

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3aeb5ba1fd445a3be1448c8c844f99cfd7f9a1b1409af3cdf9ceec5ff3d7696b
- Size
  
  322KB
- MD5
  
  a6cf82c35edfee1fc1862bc86ae0dcfb
- SHA1
  
  942c19d46c4440865dea69d34068113cf65b9191
- SHA256
  
  3aeb5ba1fd445a3be1448c8c844f99cfd7f9a1b1409af3cdf9ceec5ff3d7696b
- SHA512
  
  1ae1aa116a76a8942adccf5b36fdbc40698d07d698cb7d016e6a0f5694f971074690b50a8f772b4cb715000489a4b15e06eed07db4dbb043853d4c0ba531af7b
- SSDEEP
  
  6144:IrV49uEo2S1YnQmCX492DkwNP3qpYFkKQdF8lgywXW/XK11AVBZ5jhqUnm8xc9o:IrVQu6/eIo4qQdF8lEeXK11AZDqUmp9o
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2