49485b13b51d496bac751d85ce5ec1195cdb5f484ecaec24b098d8150f57806d | Triage

Sharing

General

Target

49485b13b51d496bac751d85ce5ec1195cdb5f484ecaec24b098d8150f57806d
Size

313KB
Sample

221124-eej3haae9x
MD5

a172e62b5bbae4a87389b70da255c2da
SHA1

553c115620b5bde3ef99a187667c45dd5afc17f0
SHA256

49485b13b51d496bac751d85ce5ec1195cdb5f484ecaec24b098d8150f57806d
SHA512

4757215b8b1f6b08a8624d06d083e5d448203d8b855c39735e7faee9ed5de100ab82a5890a545c4b3456c40eecce4ddfee1da2f6849eb6670df7f0823963158f
SSDEEP

6144:grkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYh:grk4u6/eIo4nlu7trxFtApfgMyrpjYh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  49485b13b51d496bac751d85ce5ec1195cdb5f484ecaec24b098d8150f57806d
- Size
  
  313KB
- MD5
  
  a172e62b5bbae4a87389b70da255c2da
- SHA1
  
  553c115620b5bde3ef99a187667c45dd5afc17f0
- SHA256
  
  49485b13b51d496bac751d85ce5ec1195cdb5f484ecaec24b098d8150f57806d
- SHA512
  
  4757215b8b1f6b08a8624d06d083e5d448203d8b855c39735e7faee9ed5de100ab82a5890a545c4b3456c40eecce4ddfee1da2f6849eb6670df7f0823963158f
- SSDEEP
  
  6144:grkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYh:grk4u6/eIo4nlu7trxFtApfgMyrpjYh
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2