2f38d9a5b71c686aa51d20dc617c04558e1823b6c22650a6ee252f3bec4f9f03 | Triage

Sharing

General

Target

2f38d9a5b71c686aa51d20dc617c04558e1823b6c22650a6ee252f3bec4f9f03
Size

304KB
Sample

221124-eqkheabd7v
MD5

f9182b7b15f721c4d7d79578ff4c7d51
SHA1

6d94ff76cbfca44f817a15ed7b70105c8fc19ff8
SHA256

2f38d9a5b71c686aa51d20dc617c04558e1823b6c22650a6ee252f3bec4f9f03
SHA512

930397746c1de6354376e7fb2f9e2250e8940e52499f734d4e1467c520cbd687316e02282c73d06030903e013ac5bf96edf23c4df42ad9ce7dbc24294e1b4a7d
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPv:Nrkuu6/eIo4tQW62T+uTwM6YVxm24v

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2f38d9a5b71c686aa51d20dc617c04558e1823b6c22650a6ee252f3bec4f9f03
- Size
  
  304KB
- MD5
  
  f9182b7b15f721c4d7d79578ff4c7d51
- SHA1
  
  6d94ff76cbfca44f817a15ed7b70105c8fc19ff8
- SHA256
  
  2f38d9a5b71c686aa51d20dc617c04558e1823b6c22650a6ee252f3bec4f9f03
- SHA512
  
  930397746c1de6354376e7fb2f9e2250e8940e52499f734d4e1467c520cbd687316e02282c73d06030903e013ac5bf96edf23c4df42ad9ce7dbc24294e1b4a7d
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPv:Nrkuu6/eIo4tQW62T+uTwM6YVxm24v
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2