2177a801254db985f90f41580cf0c836d39ad6f24ea2e937e6fb3d1e278cb797 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fec7163a02932c11c4ad75fd8fc0e2e
Size

259KB
Sample

231224-yw9t2agaap
MD5

0fec7163a02932c11c4ad75fd8fc0e2e
SHA1

3c356c237f5cd0b346e3f9388809725f7fd52bbf
SHA256

2177a801254db985f90f41580cf0c836d39ad6f24ea2e937e6fb3d1e278cb797
SHA512

c9b8adb923ed14dd04ad1d99ef4e159daf9d91fc619f558914a03432f53fd8543650fc0a25aeadcfa5076eda298813a94e356831186718ceee1fb9f33caf2f1e
SSDEEP

6144:JBZjekT2GTvsIjoL5YQetVjkxlbccPFdlRv/TT3/j:JXSkXylYQetwvD3TT3/j

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  0fec7163a02932c11c4ad75fd8fc0e2e
- Size
  
  259KB
- MD5
  
  0fec7163a02932c11c4ad75fd8fc0e2e
- SHA1
  
  3c356c237f5cd0b346e3f9388809725f7fd52bbf
- SHA256
  
  2177a801254db985f90f41580cf0c836d39ad6f24ea2e937e6fb3d1e278cb797
- SHA512
  
  c9b8adb923ed14dd04ad1d99ef4e159daf9d91fc619f558914a03432f53fd8543650fc0a25aeadcfa5076eda298813a94e356831186718ceee1fb9f33caf2f1e
- SSDEEP
  
  6144:JBZjekT2GTvsIjoL5YQetVjkxlbccPFdlRv/TT3/j:JXSkXylYQetwvD3TT3/j
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2