13c0a32e85391730c564387f4028ed40510b0d47f4e3f5d41354065289197e37 | Triage

Sharing

General

Target

21e7b0f0ae5946d21de974c5f1be04a1
Size

321KB
Sample

231231-axlltsheh3
MD5

21e7b0f0ae5946d21de974c5f1be04a1
SHA1

a598de5e9ede9f8169228333d22470c7c0492598
SHA256

13c0a32e85391730c564387f4028ed40510b0d47f4e3f5d41354065289197e37
SHA512

41c1e7815016e89b2ae22a6390f7f8589a8b9ac8c7a054a2c15c4f3320fbf6e1f996f40364c72e347b36de452a693fcf455e433738d788d5d51b9ee97e45e41f
SSDEEP

6144:FGnm5qhB3O0RhTDkFcDv6iHk68ziipu0WHP5r7bl10O:Anm5qhB3O0RhPkCDx8+Y/+Pxl10O

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  21e7b0f0ae5946d21de974c5f1be04a1
- Size
  
  321KB
- MD5
  
  21e7b0f0ae5946d21de974c5f1be04a1
- SHA1
  
  a598de5e9ede9f8169228333d22470c7c0492598
- SHA256
  
  13c0a32e85391730c564387f4028ed40510b0d47f4e3f5d41354065289197e37
- SHA512
  
  41c1e7815016e89b2ae22a6390f7f8589a8b9ac8c7a054a2c15c4f3320fbf6e1f996f40364c72e347b36de452a693fcf455e433738d788d5d51b9ee97e45e41f
- SSDEEP
  
  6144:FGnm5qhB3O0RhTDkFcDv6iHk68ziipu0WHP5r7bl10O:Anm5qhB3O0RhPkCDx8+Y/+Pxl10O
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2