f28998a6b8a2abb7ce05bae7cb1322afa512845f44c622ede0149b16ab0ac27a | Triage

Sharing

General

Target

f28998a6b8a2abb7ce05bae7cb1322afa512845f44c622ede0149b16ab0ac27a
Size

304KB
Sample

221124-emb2vsga26
MD5

8d25807efd27a68c8ef5b98f8738ab3e
SHA1

bd0749c6a292f26b6c23d72007d8c2d6fc7c35e3
SHA256

f28998a6b8a2abb7ce05bae7cb1322afa512845f44c622ede0149b16ab0ac27a
SHA512

46d0bb7a1fe342d0efee3030ac53f983b2d3002412e7610663e574a299310f5abdacfebf1f31fda6edd7c162d05d27550328c0fd3a7f14fd7caf6d2d3df46d82
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyP5:Nrkuu6/eIo4tQW62T+uTwM6YVxm245

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f28998a6b8a2abb7ce05bae7cb1322afa512845f44c622ede0149b16ab0ac27a
- Size
  
  304KB
- MD5
  
  8d25807efd27a68c8ef5b98f8738ab3e
- SHA1
  
  bd0749c6a292f26b6c23d72007d8c2d6fc7c35e3
- SHA256
  
  f28998a6b8a2abb7ce05bae7cb1322afa512845f44c622ede0149b16ab0ac27a
- SHA512
  
  46d0bb7a1fe342d0efee3030ac53f983b2d3002412e7610663e574a299310f5abdacfebf1f31fda6edd7c162d05d27550328c0fd3a7f14fd7caf6d2d3df46d82
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyP5:Nrkuu6/eIo4tQW62T+uTwM6YVxm245
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2