af0f95ef29c0dd7dc1bd03c836200911fdd4b0fd9210cde6ce09db4b63d46600 | Triage

Sharing

General

Target

af0f95ef29c0dd7dc1bd03c836200911fdd4b0fd9210cde6ce09db4b63d46600
Size

304KB
Sample

221123-kxgyrahg29
MD5

b393774bfa0e8a73258b6b36fe8521f0
SHA1

dc90656bd4b6e5e5363b97d5148f9e20f1e3123e
SHA256

af0f95ef29c0dd7dc1bd03c836200911fdd4b0fd9210cde6ce09db4b63d46600
SHA512

8a8638954436fca5cd0a380032e9960b52137c20805022e354eb36e19c0e8f6fe67920607c25425587165032d16825eea21eaf0981950b0a070cc5dcae2a6997
SSDEEP

6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPx:Vrkuu6/eIo4tQW62T+uTwM6YVxm24x

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  af0f95ef29c0dd7dc1bd03c836200911fdd4b0fd9210cde6ce09db4b63d46600
- Size
  
  304KB
- MD5
  
  b393774bfa0e8a73258b6b36fe8521f0
- SHA1
  
  dc90656bd4b6e5e5363b97d5148f9e20f1e3123e
- SHA256
  
  af0f95ef29c0dd7dc1bd03c836200911fdd4b0fd9210cde6ce09db4b63d46600
- SHA512
  
  8a8638954436fca5cd0a380032e9960b52137c20805022e354eb36e19c0e8f6fe67920607c25425587165032d16825eea21eaf0981950b0a070cc5dcae2a6997
- SSDEEP
  
  6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPx:Vrkuu6/eIo4tQW62T+uTwM6YVxm24x
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2