04a602eb42e7af9a9620bc75369da904250f10c97a232e4f843994f97559989e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70f5cb7259ee922beb3c4433df4232c2
Size

258KB
Sample

231226-qdcgtafebp
MD5

70f5cb7259ee922beb3c4433df4232c2
SHA1

03ff54d56bae0e866ce0a7efdb5f459e9c5c5d6f
SHA256

04a602eb42e7af9a9620bc75369da904250f10c97a232e4f843994f97559989e
SHA512

13686b0c998ffcc064d01cf4f0cb9c629d3f4e388da1ec8b3953d613e947b9abe3d74b8013e1ea5e510e6b9eb971b10a2d6b781a14b16f152e7f2643d807cf9f
SSDEEP

6144:HLVKBiDQv07dUMCC4jaOmUku9zRKRnkXdWorMaqnYMhbQ:KiMv0dUBC4jaOf9sRnKFr1qnYMhbQ

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  70f5cb7259ee922beb3c4433df4232c2
- Size
  
  258KB
- MD5
  
  70f5cb7259ee922beb3c4433df4232c2
- SHA1
  
  03ff54d56bae0e866ce0a7efdb5f459e9c5c5d6f
- SHA256
  
  04a602eb42e7af9a9620bc75369da904250f10c97a232e4f843994f97559989e
- SHA512
  
  13686b0c998ffcc064d01cf4f0cb9c629d3f4e388da1ec8b3953d613e947b9abe3d74b8013e1ea5e510e6b9eb971b10a2d6b781a14b16f152e7f2643d807cf9f
- SSDEEP
  
  6144:HLVKBiDQv07dUMCC4jaOmUku9zRKRnkXdWorMaqnYMhbQ:KiMv0dUBC4jaOf9sRnKFr1qnYMhbQ
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2