ba677e385ab10363c92f5f79896ba14fa48394df71552232355d4f853f7a64f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba677e385ab10363c92f5f79896ba14fa48394df71552232355d4f853f7a64f3
Size

303KB
Sample

221206-szyy2sdh2s
MD5

88497c472fae5ec21431c1483015c4d6
SHA1

bdd83450d7dcc4057a445a89b6a5fc21db5f2795
SHA256

ba677e385ab10363c92f5f79896ba14fa48394df71552232355d4f853f7a64f3
SHA512

96bd5ab3a7de6176eafc410f0ee202f35ebcfc7a8de54d91b2292ccf13a37a3a3258ca623ec3d64c0d4b5b5d9dfbe5eb1507f86221bcade97120d449543f195c
SSDEEP

6144:ErkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx74:ErkX63yRl1uqM+gs+2RLTf+QLShvQx74

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba677e385ab10363c92f5f79896ba14fa48394df71552232355d4f853f7a64f3
- Size
  
  303KB
- MD5
  
  88497c472fae5ec21431c1483015c4d6
- SHA1
  
  bdd83450d7dcc4057a445a89b6a5fc21db5f2795
- SHA256
  
  ba677e385ab10363c92f5f79896ba14fa48394df71552232355d4f853f7a64f3
- SHA512
  
  96bd5ab3a7de6176eafc410f0ee202f35ebcfc7a8de54d91b2292ccf13a37a3a3258ca623ec3d64c0d4b5b5d9dfbe5eb1507f86221bcade97120d449543f195c
- SSDEEP
  
  6144:ErkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx74:ErkX63yRl1uqM+gs+2RLTf+QLShvQx74
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2