24d5f06eb344e99f32ca1fdbd712f9d6dcb4f3b88069273570f3807af1e2342d | Triage

Sharing

General

Target

24d5f06eb344e99f32ca1fdbd712f9d6dcb4f3b88069273570f3807af1e2342d
Size

57KB
Sample

221128-m1xvgsha35
MD5

2288112ddbb4c58c0c12a7282226645a
SHA1

9c85dc47b5738ea472495283109e5c8871ad041d
SHA256

24d5f06eb344e99f32ca1fdbd712f9d6dcb4f3b88069273570f3807af1e2342d
SHA512

4fbd1fd22b3f59b59839e220eaec1d6bd07f8fa6b8528c69e007d1afec4f6094ddd6a7bd1a6cff54317829bdf2d333cdbc058ac73266a8d071d45df93ea28557
SSDEEP

1536:gfCCBgCXgHN1G6xsNM4zs3G/SNd3G2Ae:ED+CXSN1GaEMgs3G/SNd3G2Ae

Score

8^/10

collection discovery

Malware Config

Targets

- Target
  
  24d5f06eb344e99f32ca1fdbd712f9d6dcb4f3b88069273570f3807af1e2342d
- Size
  
  57KB
- MD5
  
  2288112ddbb4c58c0c12a7282226645a
- SHA1
  
  9c85dc47b5738ea472495283109e5c8871ad041d
- SHA256
  
  24d5f06eb344e99f32ca1fdbd712f9d6dcb4f3b88069273570f3807af1e2342d
- SHA512
  
  4fbd1fd22b3f59b59839e220eaec1d6bd07f8fa6b8528c69e007d1afec4f6094ddd6a7bd1a6cff54317829bdf2d333cdbc058ac73266a8d071d45df93ea28557
- SSDEEP
  
  1536:gfCCBgCXgHN1G6xsNM4zs3G/SNd3G2Ae:ED+CXSN1GaEMgs3G/SNd3G2Ae
Score

8^/10

collection discovery
- Drops file in Drivers directory
- Loads dropped DLL
- Accesses Microsoft Outlook profiles
  collection
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

collectiondiscovery

behavioral2