1544c83b8e4d5c0b20713dd11d2540a90032930d4dfeff6d4d8b72755efa9bef | Triage

Sharing

General

Target

01941f5b1e953040f3ffda6e70b132ec
Size

258KB
Sample

231224-rzxwbaagd8
MD5

01941f5b1e953040f3ffda6e70b132ec
SHA1

b435dec924216b5b896b4460668b1f2fc9d35d3c
SHA256

1544c83b8e4d5c0b20713dd11d2540a90032930d4dfeff6d4d8b72755efa9bef
SHA512

8c44cdf1ccca0a8f609f5c97e270975ee789aa9f1a661a64603d1aa23efde063a407f6d8482905e5e9e79e69af2c8f67a299341140950e4d06508d704b516f05
SSDEEP

3072:I8+g1CvAqReXVbfQEjP3BO+WSRcR1kiVf5SyL84OiaYKbekKCVc9q55BjDsmeb75:I8+gkrKDd8QODwcML+9qv94mgEaHw5k

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  01941f5b1e953040f3ffda6e70b132ec
- Size
  
  258KB
- MD5
  
  01941f5b1e953040f3ffda6e70b132ec
- SHA1
  
  b435dec924216b5b896b4460668b1f2fc9d35d3c
- SHA256
  
  1544c83b8e4d5c0b20713dd11d2540a90032930d4dfeff6d4d8b72755efa9bef
- SHA512
  
  8c44cdf1ccca0a8f609f5c97e270975ee789aa9f1a661a64603d1aa23efde063a407f6d8482905e5e9e79e69af2c8f67a299341140950e4d06508d704b516f05
- SSDEEP
  
  3072:I8+g1CvAqReXVbfQEjP3BO+WSRcR1kiVf5SyL84OiaYKbekKCVc9q55BjDsmeb75:I8+gkrKDd8QODwcML+9qv94mgEaHw5k
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2