e94dcdde5ec759125ef2932ade99cacefc590cbe8d42b9262df31aaf21db33e2 | Triage

Sharing

General

Target

e94dcdde5ec759125ef2932ade99cacefc590cbe8d42b9262df31aaf21db33e2
Size

79KB
Sample

221201-tynx5aff69
MD5

26b9b1d4bbe411572c49ebdcfca082d1
SHA1

9b0b88539da1d56304eba89d718521a20a2e5166
SHA256

e94dcdde5ec759125ef2932ade99cacefc590cbe8d42b9262df31aaf21db33e2
SHA512

d20c4a0787cebd287f6ea3a9d5badb4f4f50ad9886d998a3efa0d9924cf10a8bf5ec60866dcbd85e1ddd64f2b316bce141797674d7bb19eaa38754b9eafb00c0
SSDEEP

1536:DiItUuQoMyam0kUysKY2dYGoDxHEiDlwGNDX1Zj1gV1fB7Ql:DvBamLUysK8xHEiDykJqal

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  e94dcdde5ec759125ef2932ade99cacefc590cbe8d42b9262df31aaf21db33e2
- Size
  
  79KB
- MD5
  
  26b9b1d4bbe411572c49ebdcfca082d1
- SHA1
  
  9b0b88539da1d56304eba89d718521a20a2e5166
- SHA256
  
  e94dcdde5ec759125ef2932ade99cacefc590cbe8d42b9262df31aaf21db33e2
- SHA512
  
  d20c4a0787cebd287f6ea3a9d5badb4f4f50ad9886d998a3efa0d9924cf10a8bf5ec60866dcbd85e1ddd64f2b316bce141797674d7bb19eaa38754b9eafb00c0
- SSDEEP
  
  1536:DiItUuQoMyam0kUysKY2dYGoDxHEiDlwGNDX1Zj1gV1fB7Ql:DvBamLUysK8xHEiDykJqal
Score

8^/10

discovery
- Blocklisted process makes network request
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2