af8f9fce7d65616f06b1d0d462afea067739bc14b8e10ecefc750af273012f00 | Triage

Sharing

General

Target

af8f9fce7d65616f06b1d0d462afea067739bc14b8e10ecefc750af273012f00
Size

316KB
Sample

221127-3xgl4ahb94
MD5

b270d2f6e3fbf853b64c2604dab418ff
SHA1

930f4bbb4422d28567e7fa212e2849a0acaca79f
SHA256

af8f9fce7d65616f06b1d0d462afea067739bc14b8e10ecefc750af273012f00
SHA512

eff7271b9927922e463a46fde4823e4f32e95409323ab19479aa1540baa5a08fd8279b175781ffa8fb119f047c8cdfc936e080d9bb64a4db7a80b72add2e9759
SSDEEP

6144:br/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYx:br0kuveY3cY1cia66MGd0Vs9BdNq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  af8f9fce7d65616f06b1d0d462afea067739bc14b8e10ecefc750af273012f00
- Size
  
  316KB
- MD5
  
  b270d2f6e3fbf853b64c2604dab418ff
- SHA1
  
  930f4bbb4422d28567e7fa212e2849a0acaca79f
- SHA256
  
  af8f9fce7d65616f06b1d0d462afea067739bc14b8e10ecefc750af273012f00
- SHA512
  
  eff7271b9927922e463a46fde4823e4f32e95409323ab19479aa1540baa5a08fd8279b175781ffa8fb119f047c8cdfc936e080d9bb64a4db7a80b72add2e9759
- SSDEEP
  
  6144:br/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYx:br0kuveY3cY1cia66MGd0Vs9BdNq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2