e292e09b4d322dac33787195bdeb5977e2cfa2a0d3c8871249adfdd1118742f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e292e09b4d322dac33787195bdeb5977e2cfa2a0d3c8871249adfdd1118742f4
Size

316KB
Sample

221127-kx3kfsdh68
MD5

7fcd8348409b33b956cd2fb5e16ac79e
SHA1

12b1fbbdde390b959e56225dee96260d91b1e6a7
SHA256

e292e09b4d322dac33787195bdeb5977e2cfa2a0d3c8871249adfdd1118742f4
SHA512

256f33bf01fd5569bfa28c970202cdff8421a9be6f7200e30b3b01f8876a7c6464163e56e9412b1ce3b4ab4427e4b7e9948b7d34bfc946bfed01083020be29f7
SSDEEP

6144:NrybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phouJ:NrLkuveY3EMK9ObxD/06s5w3BLI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e292e09b4d322dac33787195bdeb5977e2cfa2a0d3c8871249adfdd1118742f4
- Size
  
  316KB
- MD5
  
  7fcd8348409b33b956cd2fb5e16ac79e
- SHA1
  
  12b1fbbdde390b959e56225dee96260d91b1e6a7
- SHA256
  
  e292e09b4d322dac33787195bdeb5977e2cfa2a0d3c8871249adfdd1118742f4
- SHA512
  
  256f33bf01fd5569bfa28c970202cdff8421a9be6f7200e30b3b01f8876a7c6464163e56e9412b1ce3b4ab4427e4b7e9948b7d34bfc946bfed01083020be29f7
- SSDEEP
  
  6144:NrybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phouJ:NrLkuveY3EMK9ObxD/06s5w3BLI
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2