0e544262a47191d920d0af0b5c1f07afb496649e2c39ae46525ab7041944d278 | Triage

Sharing

General

Target

0e544262a47191d920d0af0b5c1f07afb496649e2c39ae46525ab7041944d278
Size

313KB
Sample

221123-kqgpeahd84
MD5

9674625feb4a90c759d08d47c5ed5f19
SHA1

bb866e1bcd67ab17e7f461afd33c355a60b1d58c
SHA256

0e544262a47191d920d0af0b5c1f07afb496649e2c39ae46525ab7041944d278
SHA512

ec5a2e4c9eacea41782e3f083324365109b5c1854c8091cdf63590f870d74660c83a8288357ffde56556b6071251ff730c6fe27225f3f032266f967ff82ce201
SSDEEP

6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lb:Hryu6/eIo4vMResyEf0uP9d9UG0b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0e544262a47191d920d0af0b5c1f07afb496649e2c39ae46525ab7041944d278
- Size
  
  313KB
- MD5
  
  9674625feb4a90c759d08d47c5ed5f19
- SHA1
  
  bb866e1bcd67ab17e7f461afd33c355a60b1d58c
- SHA256
  
  0e544262a47191d920d0af0b5c1f07afb496649e2c39ae46525ab7041944d278
- SHA512
  
  ec5a2e4c9eacea41782e3f083324365109b5c1854c8091cdf63590f870d74660c83a8288357ffde56556b6071251ff730c6fe27225f3f032266f967ff82ce201
- SSDEEP
  
  6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lb:Hryu6/eIo4vMResyEf0uP9d9UG0b
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2