298e0b14b1d0f4c90b800b4f00a3597a2103c0b7b1469f909b707049cdb61964 | Triage

Sharing

General

Target

298e0b14b1d0f4c90b800b4f00a3597a2103c0b7b1469f909b707049cdb61964
Size

313KB
Sample

221123-kj6d7ace8y
MD5

d8737bab109ec4d08948a115c8522696
SHA1

bfe8e34aad3f65ba6d5f2e8224bc27d1f990246a
SHA256

298e0b14b1d0f4c90b800b4f00a3597a2103c0b7b1469f909b707049cdb61964
SHA512

1a13d6fe064b37cbdb9af1ca068555cd053e95ce3cdf8e4a62e8b03394da440d69811689160f786d7fb3a8f78ba8918f0867bbb27216a40e8914140736b67bba
SSDEEP

6144:5rkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYX:5rk4u6/eIo4nlu7trxFtApfgMyrpjYX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  298e0b14b1d0f4c90b800b4f00a3597a2103c0b7b1469f909b707049cdb61964
- Size
  
  313KB
- MD5
  
  d8737bab109ec4d08948a115c8522696
- SHA1
  
  bfe8e34aad3f65ba6d5f2e8224bc27d1f990246a
- SHA256
  
  298e0b14b1d0f4c90b800b4f00a3597a2103c0b7b1469f909b707049cdb61964
- SHA512
  
  1a13d6fe064b37cbdb9af1ca068555cd053e95ce3cdf8e4a62e8b03394da440d69811689160f786d7fb3a8f78ba8918f0867bbb27216a40e8914140736b67bba
- SSDEEP
  
  6144:5rkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYX:5rk4u6/eIo4nlu7trxFtApfgMyrpjYX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2