af1885ef8e473141bb1353e21ad6e9df75f115fc031b63dc2787bb008e48a7ce | Triage

Sharing

General

Target

af1885ef8e473141bb1353e21ad6e9df75f115fc031b63dc2787bb008e48a7ce
Size

258KB
Sample

221204-qr7j4sgf3v
MD5

2a8d3957c924cefc33a3a4949aeba76f
SHA1

88b1fb2839fcd8d1821dff72e3dfd0db334ea30a
SHA256

af1885ef8e473141bb1353e21ad6e9df75f115fc031b63dc2787bb008e48a7ce
SHA512

d6ff4dd34e1e3d467f4c596c58ea08593edf3bcb3918ccf0b39f808664dd36bf7725b25d93cc684733ac37cfe36cfed0fd3f6c7d5ac84cac3c79047f90264f75
SSDEEP

3072:8NQtr5gHqfrbmKPduiqBInimEZ8s1pqxt3YHADsobZph50FBRXDplTfyuURWIok1:Ttr6HKbxxqP1pqvYgwobZERHfEYVnNzA

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  af1885ef8e473141bb1353e21ad6e9df75f115fc031b63dc2787bb008e48a7ce
- Size
  
  258KB
- MD5
  
  2a8d3957c924cefc33a3a4949aeba76f
- SHA1
  
  88b1fb2839fcd8d1821dff72e3dfd0db334ea30a
- SHA256
  
  af1885ef8e473141bb1353e21ad6e9df75f115fc031b63dc2787bb008e48a7ce
- SHA512
  
  d6ff4dd34e1e3d467f4c596c58ea08593edf3bcb3918ccf0b39f808664dd36bf7725b25d93cc684733ac37cfe36cfed0fd3f6c7d5ac84cac3c79047f90264f75
- SSDEEP
  
  3072:8NQtr5gHqfrbmKPduiqBInimEZ8s1pqxt3YHADsobZph50FBRXDplTfyuURWIok1:Ttr6HKbxxqP1pqvYgwobZERHfEYVnNzA
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2