47c589f1de60059145a87e1e0a1615096a9f256df8c8e197a8ebe2b4d03dee10 | Triage

Sharing

General

Target

47c589f1de60059145a87e1e0a1615096a9f256df8c8e197a8ebe2b4d03dee10
Size

313KB
Sample

221124-eenqpaaf2t
MD5

eda3e3ae0560e66fbb0e2310248adcbb
SHA1

64d65ebffe6eab2a8d42e5be63f56ec0a2366f90
SHA256

47c589f1de60059145a87e1e0a1615096a9f256df8c8e197a8ebe2b4d03dee10
SHA512

cb221c7ecac5a4c3d407804ec30a399234bf35db7899965a66968fd3744f00b31ab6e7e62e1c028c808186bf3b7e44107b1b2e4d91888b698779fe3ea1798c01
SSDEEP

6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMk:5rRu6/eIo4t3PuFITKUAf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  47c589f1de60059145a87e1e0a1615096a9f256df8c8e197a8ebe2b4d03dee10
- Size
  
  313KB
- MD5
  
  eda3e3ae0560e66fbb0e2310248adcbb
- SHA1
  
  64d65ebffe6eab2a8d42e5be63f56ec0a2366f90
- SHA256
  
  47c589f1de60059145a87e1e0a1615096a9f256df8c8e197a8ebe2b4d03dee10
- SHA512
  
  cb221c7ecac5a4c3d407804ec30a399234bf35db7899965a66968fd3744f00b31ab6e7e62e1c028c808186bf3b7e44107b1b2e4d91888b698779fe3ea1798c01
- SSDEEP
  
  6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMk:5rRu6/eIo4t3PuFITKUAf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2