afaa6f314d6e07c7ec8988e578aebb4fa9ff51f69cc1b36af1e8d98c8c92a28b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afaa6f314d6e07c7ec8988e578aebb4fa9ff51f69cc1b36af1e8d98c8c92a28b
Size

326KB
Sample

221204-knh5fsgg4z
MD5

7db498763556139f39eef6d0f8508a22
SHA1

3437956fc1b83c69098794cb4336aefbb1a2d1f3
SHA256

afaa6f314d6e07c7ec8988e578aebb4fa9ff51f69cc1b36af1e8d98c8c92a28b
SHA512

b1c8c86fe63e592ffbed66c518a433b0640874b57f35d6b4444717220c2664001b9743d1a6590c5442611e6abea5cf3853548050839ffd351ea0ec51be5aea18
SSDEEP

6144:fr469uEo2S1YnQmCX492DkwNP3qpYF3CkiCnVEBcGmCjJ0lufSS13vWD66PytEfP:fr4iu6/eIo4ItiUQc4DuD66P+kAPWQC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  afaa6f314d6e07c7ec8988e578aebb4fa9ff51f69cc1b36af1e8d98c8c92a28b
- Size
  
  326KB
- MD5
  
  7db498763556139f39eef6d0f8508a22
- SHA1
  
  3437956fc1b83c69098794cb4336aefbb1a2d1f3
- SHA256
  
  afaa6f314d6e07c7ec8988e578aebb4fa9ff51f69cc1b36af1e8d98c8c92a28b
- SHA512
  
  b1c8c86fe63e592ffbed66c518a433b0640874b57f35d6b4444717220c2664001b9743d1a6590c5442611e6abea5cf3853548050839ffd351ea0ec51be5aea18
- SSDEEP
  
  6144:fr469uEo2S1YnQmCX492DkwNP3qpYF3CkiCnVEBcGmCjJ0lufSS13vWD66PytEfP:fr4iu6/eIo4ItiUQc4DuD66P+kAPWQC
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2