a3e1ba5a16e188e81f86f57f83a70df3df440dcdaacc3da75fb13223cb13732d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3e1ba5a16e188e81f86f57f83a70df3df440dcdaacc3da75fb13223cb13732d
Size

312KB
Sample

221206-s4zq5seb81
MD5

ebb9d2fad6e52b75a6db1185449ba096
SHA1

87ae8743ff8bf3ed6562eaaea1860c063b9deb60
SHA256

a3e1ba5a16e188e81f86f57f83a70df3df440dcdaacc3da75fb13223cb13732d
SHA512

de134d9012f1b619b0677f5bee4558db3987a671d97f19fbc2d80a16e031f0c0a6e3857b23304af93f2e34bb714c6a89f7c31bc5cccdc4f944d25470734a404d
SSDEEP

6144:BrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr1b:BrVu63yRl1uqM+gs++UZ0hbJDrJ1b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3e1ba5a16e188e81f86f57f83a70df3df440dcdaacc3da75fb13223cb13732d
- Size
  
  312KB
- MD5
  
  ebb9d2fad6e52b75a6db1185449ba096
- SHA1
  
  87ae8743ff8bf3ed6562eaaea1860c063b9deb60
- SHA256
  
  a3e1ba5a16e188e81f86f57f83a70df3df440dcdaacc3da75fb13223cb13732d
- SHA512
  
  de134d9012f1b619b0677f5bee4558db3987a671d97f19fbc2d80a16e031f0c0a6e3857b23304af93f2e34bb714c6a89f7c31bc5cccdc4f944d25470734a404d
- SSDEEP
  
  6144:BrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr1b:BrVu63yRl1uqM+gs++UZ0hbJDrJ1b
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2