afab1be656a3dec9410dd14a616228e4b97928a1f295c080a5821b647299d87f | Triage

Sharing

General

Target

afab1be656a3dec9410dd14a616228e4b97928a1f295c080a5821b647299d87f
Size

312KB
Sample

221204-kmpwlsda47
MD5

89d1e567d258ea34c0cead4fa96bf0cb
SHA1

00279e6cfc75ea5072930ec2729312f44f047bc3
SHA256

afab1be656a3dec9410dd14a616228e4b97928a1f295c080a5821b647299d87f
SHA512

a6e8ddaa95c72dba31a948332de159e0ec9b976e32207e89c2584600d15c3099f6b84ba033886579f793ee2140b373714550287bfcda9bed8272f7b3823fee6e
SSDEEP

6144:YrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iLo:Yrkau6/eIo43ts7KcXgXAN7i0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  afab1be656a3dec9410dd14a616228e4b97928a1f295c080a5821b647299d87f
- Size
  
  312KB
- MD5
  
  89d1e567d258ea34c0cead4fa96bf0cb
- SHA1
  
  00279e6cfc75ea5072930ec2729312f44f047bc3
- SHA256
  
  afab1be656a3dec9410dd14a616228e4b97928a1f295c080a5821b647299d87f
- SHA512
  
  a6e8ddaa95c72dba31a948332de159e0ec9b976e32207e89c2584600d15c3099f6b84ba033886579f793ee2140b373714550287bfcda9bed8272f7b3823fee6e
- SSDEEP
  
  6144:YrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iLo:Yrkau6/eIo43ts7KcXgXAN7i0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2