8f6facb63ffe32b396d21852cb417ea2f3f92f14e6196f7bb99b7b9497a774bd | Triage

Sharing

General

Target

8f6facb63ffe32b396d21852cb417ea2f3f92f14e6196f7bb99b7b9497a774bd
Size

316KB
Sample

221002-kee2fafed5
MD5

4a928775a2a939384829e901f07fada0
SHA1

38b05f666b5f243730a923aca837a616d7796059
SHA256

8f6facb63ffe32b396d21852cb417ea2f3f92f14e6196f7bb99b7b9497a774bd
SHA512

68964f52f74ddd22cc54d2c4589735bdfee2923966f0b8814ab5658bfb0bddebf732c05eb963a916d18ef6076475c3b0102abdd142b2b0da07472a424f9e8b27
SSDEEP

6144:PrFbUzkuvcBYC47l2xWFAS3r/n2KvN48uFPPDZyMeI:Pr2kuveY3ZF31N4XxZjb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8f6facb63ffe32b396d21852cb417ea2f3f92f14e6196f7bb99b7b9497a774bd
- Size
  
  316KB
- MD5
  
  4a928775a2a939384829e901f07fada0
- SHA1
  
  38b05f666b5f243730a923aca837a616d7796059
- SHA256
  
  8f6facb63ffe32b396d21852cb417ea2f3f92f14e6196f7bb99b7b9497a774bd
- SHA512
  
  68964f52f74ddd22cc54d2c4589735bdfee2923966f0b8814ab5658bfb0bddebf732c05eb963a916d18ef6076475c3b0102abdd142b2b0da07472a424f9e8b27
- SSDEEP
  
  6144:PrFbUzkuvcBYC47l2xWFAS3r/n2KvN48uFPPDZyMeI:Pr2kuveY3ZF31N4XxZjb
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2