1603c695ddec4382dab0da9a883c0c65542e0cce7d55076918951c34198d6de0 | Triage

Sharing

General

Target

1603c695ddec4382dab0da9a883c0c65542e0cce7d55076918951c34198d6de0
Size

305KB
Sample

221124-eqqdnagc32
MD5

aea619d0bfc1f65170c39f264938e156
SHA1

a62926b3212453491eca724541c57ff8d43e1aff
SHA256

1603c695ddec4382dab0da9a883c0c65542e0cce7d55076918951c34198d6de0
SHA512

8bfa3b9917fccf9f6b4fa72becf838679f87127338fdec8524181341f4510af0f93e4161f4c55533a2980df5b28f7002c89b17a002aa0be660984b5c4abbf077
SSDEEP

6144:brkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPR:brkuu6/eIo4tQW62T+uTwM6YVxm24R

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1603c695ddec4382dab0da9a883c0c65542e0cce7d55076918951c34198d6de0
- Size
  
  305KB
- MD5
  
  aea619d0bfc1f65170c39f264938e156
- SHA1
  
  a62926b3212453491eca724541c57ff8d43e1aff
- SHA256
  
  1603c695ddec4382dab0da9a883c0c65542e0cce7d55076918951c34198d6de0
- SHA512
  
  8bfa3b9917fccf9f6b4fa72becf838679f87127338fdec8524181341f4510af0f93e4161f4c55533a2980df5b28f7002c89b17a002aa0be660984b5c4abbf077
- SSDEEP
  
  6144:brkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPR:brkuu6/eIo4tQW62T+uTwM6YVxm24R
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2