afe6507bd32451a8174c77bfc87620dc155d69024eeaa0ea2fcc56b00dcc464d | Triage

Sharing

General

Target

afe6507bd32451a8174c77bfc87620dc155d69024eeaa0ea2fcc56b00dcc464d
Size

327KB
Sample

221127-dvdpzsfa64
MD5

05819eaf6ccd03c815663de145f94ae7
SHA1

57653d05b2a2d16ccedbf709c78b5a61fb786c20
SHA256

afe6507bd32451a8174c77bfc87620dc155d69024eeaa0ea2fcc56b00dcc464d
SHA512

be09cd9eb88d8976f3386a96eaf2dba67c85b6fcd612cc71e8f9768a72529fd9448adce8333449b4e0bf1cfb54c43890324562270dd828a0cfcba7dea06ac74d
SSDEEP

6144:0rpbUzkuvcBYC47l2xKYEti5hHHQ9qZGoBRonSUIDdpK6KMydWj:0rakuveY3PYT5xQrdVUbK6KMydm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  afe6507bd32451a8174c77bfc87620dc155d69024eeaa0ea2fcc56b00dcc464d
- Size
  
  327KB
- MD5
  
  05819eaf6ccd03c815663de145f94ae7
- SHA1
  
  57653d05b2a2d16ccedbf709c78b5a61fb786c20
- SHA256
  
  afe6507bd32451a8174c77bfc87620dc155d69024eeaa0ea2fcc56b00dcc464d
- SHA512
  
  be09cd9eb88d8976f3386a96eaf2dba67c85b6fcd612cc71e8f9768a72529fd9448adce8333449b4e0bf1cfb54c43890324562270dd828a0cfcba7dea06ac74d
- SSDEEP
  
  6144:0rpbUzkuvcBYC47l2xKYEti5hHHQ9qZGoBRonSUIDdpK6KMydWj:0rakuveY3PYT5xQrdVUbK6KMydm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2