e0b35b3e65ee329b70d0744f29b5cd3a4e9480f0bc79fcc835f17a27f66a9c29 | Triage

Sharing

General

Target

e0b35b3e65ee329b70d0744f29b5cd3a4e9480f0bc79fcc835f17a27f66a9c29
Size

313KB
Sample

221124-mm74asgg27
MD5

43c24d2bfd92147526431c83f07ff3ca
SHA1

5d3f67d61194fe0f2128c87be66f3af51fd92c13
SHA256

e0b35b3e65ee329b70d0744f29b5cd3a4e9480f0bc79fcc835f17a27f66a9c29
SHA512

762f60544c5b1c9cf248bd0523e1af149959bd377c518416d459c29229ef5abb0ade7825975fda76fcf6589c183c06d75e6ef91a94f7f1c785461b5627a93c91
SSDEEP

6144:Qro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dUB:QrAu6/eIo4s1yR9lsc/adO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e0b35b3e65ee329b70d0744f29b5cd3a4e9480f0bc79fcc835f17a27f66a9c29
- Size
  
  313KB
- MD5
  
  43c24d2bfd92147526431c83f07ff3ca
- SHA1
  
  5d3f67d61194fe0f2128c87be66f3af51fd92c13
- SHA256
  
  e0b35b3e65ee329b70d0744f29b5cd3a4e9480f0bc79fcc835f17a27f66a9c29
- SHA512
  
  762f60544c5b1c9cf248bd0523e1af149959bd377c518416d459c29229ef5abb0ade7825975fda76fcf6589c183c06d75e6ef91a94f7f1c785461b5627a93c91
- SSDEEP
  
  6144:Qro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dUB:QrAu6/eIo4s1yR9lsc/adO
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2