e4fdfe1893375b7a63fd34f85cd1f766c77884de44fc4c8e4aa5d7ad40dd116a | Triage

Sharing

General

Target

e4fdfe1893375b7a63fd34f85cd1f766c77884de44fc4c8e4aa5d7ad40dd116a
Size

313KB
Sample

221206-sq9n7aaa65
MD5

acabdbf1a441c3da87e68f50add2b068
SHA1

17d841315e6f50931cedcd4fa9f700b9bb066397
SHA256

e4fdfe1893375b7a63fd34f85cd1f766c77884de44fc4c8e4aa5d7ad40dd116a
SHA512

f3e366d7b8535720824332fd31170e77dcc760126d176dc0985c1e2e3f45b778b8e986d2555c021a354c3d172a40cf554948aa16d567586e7691cdddc913dc3d
SSDEEP

6144:ArV99uEo2S1YnQmCX492DkwNP3qpYFlxE6ACgAUU0N9/MHlaB+OkgD:ArVDu6/eIo4edxgA4HMHlED

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e4fdfe1893375b7a63fd34f85cd1f766c77884de44fc4c8e4aa5d7ad40dd116a
- Size
  
  313KB
- MD5
  
  acabdbf1a441c3da87e68f50add2b068
- SHA1
  
  17d841315e6f50931cedcd4fa9f700b9bb066397
- SHA256
  
  e4fdfe1893375b7a63fd34f85cd1f766c77884de44fc4c8e4aa5d7ad40dd116a
- SHA512
  
  f3e366d7b8535720824332fd31170e77dcc760126d176dc0985c1e2e3f45b778b8e986d2555c021a354c3d172a40cf554948aa16d567586e7691cdddc913dc3d
- SSDEEP
  
  6144:ArV99uEo2S1YnQmCX492DkwNP3qpYFlxE6ACgAUU0N9/MHlaB+OkgD:ArVDu6/eIo4edxgA4HMHlED
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2