3aa5bed78b88a212ecb8e11eab7eb4b53174ff0c3bdf31765c77469881dac0e0 | Triage

Sharing

General

Target

3aa5bed78b88a212ecb8e11eab7eb4b53174ff0c3bdf31765c77469881dac0e0
Size

326KB
Sample

221123-kfxymscd6y
MD5

a3e16ace285a59a439230bb6dfb84e69
SHA1

d5aff93c6ad44f0b359b72d327f75dac2805be08
SHA256

3aa5bed78b88a212ecb8e11eab7eb4b53174ff0c3bdf31765c77469881dac0e0
SHA512

4fcdce4be5099f4ed7c2449a198294fb05ac868ff196e3a68bbd32cf2f6f83924544cf9b4af231fdca42cec2ce0d2d5a77b705dcbfd7934859a9d2bc53624b4c
SSDEEP

6144:yr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clg4:yr4gu6/eIo4nULZKMRwxuPfk6Q

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3aa5bed78b88a212ecb8e11eab7eb4b53174ff0c3bdf31765c77469881dac0e0
- Size
  
  326KB
- MD5
  
  a3e16ace285a59a439230bb6dfb84e69
- SHA1
  
  d5aff93c6ad44f0b359b72d327f75dac2805be08
- SHA256
  
  3aa5bed78b88a212ecb8e11eab7eb4b53174ff0c3bdf31765c77469881dac0e0
- SHA512
  
  4fcdce4be5099f4ed7c2449a198294fb05ac868ff196e3a68bbd32cf2f6f83924544cf9b4af231fdca42cec2ce0d2d5a77b705dcbfd7934859a9d2bc53624b4c
- SSDEEP
  
  6144:yr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clg4:yr4gu6/eIo4nULZKMRwxuPfk6Q
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2