0ea70e60a05c46c57f02ed134bc98d8984c614d0583073d9c5091e4bcf0c7ce0 | Triage

Sharing

General

Target

0ea70e60a05c46c57f02ed134bc98d8984c614d0583073d9c5091e4bcf0c7ce0
Size

313KB
Sample

221127-lkehjaff58
MD5

c51d3cd8f8a80d39f5221b11e7d6712d
SHA1

7b47ee22e85a4a207705ab3f3af226ab78aa7e21
SHA256

0ea70e60a05c46c57f02ed134bc98d8984c614d0583073d9c5091e4bcf0c7ce0
SHA512

678fb2ed81c93b8589b5ba0232fcbb300232f9b7f39481c4f14f488eb215ce3e707cd9be9c7c4a48c48b06504992ef4d1b92aebcb07238a562bf70e62f959e39
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYR:Ark4u6/eIo4nlu7trxFtApfgMyrpjYR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0ea70e60a05c46c57f02ed134bc98d8984c614d0583073d9c5091e4bcf0c7ce0
- Size
  
  313KB
- MD5
  
  c51d3cd8f8a80d39f5221b11e7d6712d
- SHA1
  
  7b47ee22e85a4a207705ab3f3af226ab78aa7e21
- SHA256
  
  0ea70e60a05c46c57f02ed134bc98d8984c614d0583073d9c5091e4bcf0c7ce0
- SHA512
  
  678fb2ed81c93b8589b5ba0232fcbb300232f9b7f39481c4f14f488eb215ce3e707cd9be9c7c4a48c48b06504992ef4d1b92aebcb07238a562bf70e62f959e39
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYR:Ark4u6/eIo4nlu7trxFtApfgMyrpjYR
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2