70e94e4d4746fbe085175a19f0a9f41f7f01f61875185abdada218379afca435 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70e94e4d4746fbe085175a19f0a9f41f7f01f61875185abdada218379afca435
Size

315KB
Sample

221002-khhxhahadq
MD5

6e436d646f382f3229b2a7b07e0b6360
SHA1

f77d030ffb0a06ff673c92a0d4f548ee89ca30b9
SHA256

70e94e4d4746fbe085175a19f0a9f41f7f01f61875185abdada218379afca435
SHA512

3e3028ce853f6fbef58658fdb8725951680f83d515d92abdff650be2f182426d133b826d199150be7c91e2d5eb98c1681f2263b9f56376d784573a75e8412939
SSDEEP

6144:kr4bUzkuvcBYC47l2xRBoF15DyKItd1MmQXwjcP2lK:kr9kuveY3sg1thmdjcuk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  70e94e4d4746fbe085175a19f0a9f41f7f01f61875185abdada218379afca435
- Size
  
  315KB
- MD5
  
  6e436d646f382f3229b2a7b07e0b6360
- SHA1
  
  f77d030ffb0a06ff673c92a0d4f548ee89ca30b9
- SHA256
  
  70e94e4d4746fbe085175a19f0a9f41f7f01f61875185abdada218379afca435
- SHA512
  
  3e3028ce853f6fbef58658fdb8725951680f83d515d92abdff650be2f182426d133b826d199150be7c91e2d5eb98c1681f2263b9f56376d784573a75e8412939
- SSDEEP
  
  6144:kr4bUzkuvcBYC47l2xRBoF15DyKItd1MmQXwjcP2lK:kr9kuveY3sg1thmdjcuk
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2