ef46e6ad5dca06a73f1393fe9ecadbcd0320d28b9cb39b0b3a61d37a9f607679 | Triage

Sharing

General

Target

ef46e6ad5dca06a73f1393fe9ecadbcd0320d28b9cb39b0b3a61d37a9f607679
Size

313KB
Sample

221124-h8ypjagf67
MD5

1286449b2addbd8abd7715b00b49b566
SHA1

6d1623d1cefef54c286362817e2b1732f26fe4db
SHA256

ef46e6ad5dca06a73f1393fe9ecadbcd0320d28b9cb39b0b3a61d37a9f607679
SHA512

d262582cf21685b77c0bdc4a06b47ff8f35bbc29fd62481db0ce565d225048500f4c80e9dc690528894f8a6e3dcbd5052c9105bbad75e33615371ff9a2912d1f
SSDEEP

6144:/rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM2:/rRu6/eIo4t3PuFITKUAt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ef46e6ad5dca06a73f1393fe9ecadbcd0320d28b9cb39b0b3a61d37a9f607679
- Size
  
  313KB
- MD5
  
  1286449b2addbd8abd7715b00b49b566
- SHA1
  
  6d1623d1cefef54c286362817e2b1732f26fe4db
- SHA256
  
  ef46e6ad5dca06a73f1393fe9ecadbcd0320d28b9cb39b0b3a61d37a9f607679
- SHA512
  
  d262582cf21685b77c0bdc4a06b47ff8f35bbc29fd62481db0ce565d225048500f4c80e9dc690528894f8a6e3dcbd5052c9105bbad75e33615371ff9a2912d1f
- SSDEEP
  
  6144:/rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM2:/rRu6/eIo4t3PuFITKUAt
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2