2054e8c25e3ab07befbbf8fa71e5cc21ee120b2bc9f75ea3a5e1777a40b3eaf9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2054e8c25e3ab07befbbf8fa71e5cc21ee120b2bc9f75ea3a5e1777a40b3eaf9
Size

303KB
Sample

221206-tyvexagf7t
MD5

9acb0383252cdcc0787e88d3ff716e48
SHA1

182cb6d55016d878b348f7c573bdfb169d0c239e
SHA256

2054e8c25e3ab07befbbf8fa71e5cc21ee120b2bc9f75ea3a5e1777a40b3eaf9
SHA512

3f3a5d786391be71818cb43e52b837d9d5aee8bd586eebe35a4dbb178c2703a79c4a8f03969eeac44d1cae539719f58af1bb8fd779c267341307b099c1a01a12
SSDEEP

6144:TrkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx7X:TrkX63yRl1uqM+gs+2RLTf+QLShvQx7X

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2054e8c25e3ab07befbbf8fa71e5cc21ee120b2bc9f75ea3a5e1777a40b3eaf9
- Size
  
  303KB
- MD5
  
  9acb0383252cdcc0787e88d3ff716e48
- SHA1
  
  182cb6d55016d878b348f7c573bdfb169d0c239e
- SHA256
  
  2054e8c25e3ab07befbbf8fa71e5cc21ee120b2bc9f75ea3a5e1777a40b3eaf9
- SHA512
  
  3f3a5d786391be71818cb43e52b837d9d5aee8bd586eebe35a4dbb178c2703a79c4a8f03969eeac44d1cae539719f58af1bb8fd779c267341307b099c1a01a12
- SSDEEP
  
  6144:TrkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx7X:TrkX63yRl1uqM+gs+2RLTf+QLShvQx7X
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2