a3a448b07a0ef719999d1dcd17f9ebe44ddb4fafb6c669793282e63486acdaef | Triage

Sharing

General

Target

a3a448b07a0ef719999d1dcd17f9ebe44ddb4fafb6c669793282e63486acdaef
Size

312KB
Sample

221127-aam65sed27
MD5

d54563eb4e5865d439590ecdbe279c27
SHA1

9827843181ede4954f93653f2a55289152651314
SHA256

a3a448b07a0ef719999d1dcd17f9ebe44ddb4fafb6c669793282e63486acdaef
SHA512

4835a88bd14eba3f23481d71e795c66cc74604364108f806dab41a0d1b72a0ad0fa71e52954f4fe88832e92ff4cee61141c57254a080ddac2e41166d46e87465
SSDEEP

6144:0rJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzW:0rfu6/eIo4XwlWKM231t5UnRr3DdRp5L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3a448b07a0ef719999d1dcd17f9ebe44ddb4fafb6c669793282e63486acdaef
- Size
  
  312KB
- MD5
  
  d54563eb4e5865d439590ecdbe279c27
- SHA1
  
  9827843181ede4954f93653f2a55289152651314
- SHA256
  
  a3a448b07a0ef719999d1dcd17f9ebe44ddb4fafb6c669793282e63486acdaef
- SHA512
  
  4835a88bd14eba3f23481d71e795c66cc74604364108f806dab41a0d1b72a0ad0fa71e52954f4fe88832e92ff4cee61141c57254a080ddac2e41166d46e87465
- SSDEEP
  
  6144:0rJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzW:0rfu6/eIo4XwlWKM231t5UnRr3DdRp5L
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2