af8dc3b34c93d2eacfef1e4b0163fbc4841d8f69c0612482baea4e9e0b23a2fb | Triage

Sharing

General

Target

af8dc3b34c93d2eacfef1e4b0163fbc4841d8f69c0612482baea4e9e0b23a2fb
Size

324KB
Sample

221204-llr51sfh25
MD5

43f396e53ec8cd03e13c8f7acc7ebb8f
SHA1

2e8c0c644a2ae7de14a9db859216c5742c3b10fc
SHA256

af8dc3b34c93d2eacfef1e4b0163fbc4841d8f69c0612482baea4e9e0b23a2fb
SHA512

c7217c5a72903973fbe1e19f7dee7ab85c02de6871e930e0d50e388ec783ed5df04bc8ad4ecef91a8c79044c42c4e1e2a781db4a53813da7010affc4177caeb6
SSDEEP

6144:0rORTyv4bo0jy7bXbUzkuvcBYC47l2xerm4Jk4GJB5fbcMdAoIF8jriV:0rV8kuveY3Rm4JTgfQqBIerA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  af8dc3b34c93d2eacfef1e4b0163fbc4841d8f69c0612482baea4e9e0b23a2fb
- Size
  
  324KB
- MD5
  
  43f396e53ec8cd03e13c8f7acc7ebb8f
- SHA1
  
  2e8c0c644a2ae7de14a9db859216c5742c3b10fc
- SHA256
  
  af8dc3b34c93d2eacfef1e4b0163fbc4841d8f69c0612482baea4e9e0b23a2fb
- SHA512
  
  c7217c5a72903973fbe1e19f7dee7ab85c02de6871e930e0d50e388ec783ed5df04bc8ad4ecef91a8c79044c42c4e1e2a781db4a53813da7010affc4177caeb6
- SSDEEP
  
  6144:0rORTyv4bo0jy7bXbUzkuvcBYC47l2xerm4Jk4GJB5fbcMdAoIF8jriV:0rV8kuveY3Rm4JTgfQqBIerA
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2