ba28830c36e2ad7e72ecd58500f705af4347b71cff3fcd0ffdab9c5cc8c8505f | Triage

Sharing

General

Target

BA28830C36E2AD7E72ECD58500F705AF4347B71CFF3FCD0FFDAB9C5CC8C8505F
Size

315KB
Sample

221123-r16vlsaa92
MD5

bc193c1aaae18485ff40a79b3671e16f
SHA1

eb6fd6654130e3f0432cdd031e407d90dcfe1458
SHA256

ba28830c36e2ad7e72ecd58500f705af4347b71cff3fcd0ffdab9c5cc8c8505f
SHA512

2969d34c688fc61608a2c5e021676203f24ecbc289dee00c1d4a139400ad6c934f075638d03110762dd7a6a5c221877e75161ee397a0fdc09d9c74a12603fd66
SSDEEP

6144:9u+qznB5/2H6AINQ9bv1DVb5eQDrUpH5qSvRC0xRMHYnnCUpnL+AYuo0ajV/9Tm:9u3bB5a6AIQ9j1DusrwqS5CyRMsCanSU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  AEAT-Notificación.exe
- Size
  
  395KB
- MD5
  
  8c7239bd1cc1ce4e97c71b4b0debec0d
- SHA1
  
  a900b0881ff549e5a2ec3517602110b2655971c9
- SHA256
  
  94dfdd5ac373b8c58a7b684a49fac944564cb753f1fbd3980135ab246f394e8b
- SHA512
  
  65224799a9230ae794bd2c70eaa92a100b745ca881fe9689c625aae54975c313fe1dd90626bf577dabfc74fa5630ef788d84622d49a56e0ff4ac92a821465987
- SSDEEP
  
  6144:RNeZK/Pji5+6EIo/rBllsSkoThQndPpR55E9uwihP3+fnCDwItpji1KkLe8oot7:RNCEI4VsSkoThQndPp9E4wePYCD7i/Lp
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2