068fe544b6e8c6abf62a71cd2526f7e71f96523bf546862cc24606ca3e9f60fc | Triage

Sharing

General

Target

068fe544b6e8c6abf62a71cd2526f7e71f96523bf546862cc24606ca3e9f60fc
Size

314KB
Sample

221002-kswakshdhq
MD5

6e9f6ca506e3cdcb6af6de91edefd220
SHA1

82044a8d01dc569960c0241ee1ef7af9fdb976de
SHA256

068fe544b6e8c6abf62a71cd2526f7e71f96523bf546862cc24606ca3e9f60fc
SHA512

662d4e95f9e6454bab672aff1e13bf9fb3d645d4d6b968526df7cfa33ad213cddab4f4489e7ffcaf3083f854a2a5fa87a832070e65b98ac452a7558e1058de8b
SSDEEP

6144:CreyVm/vbUzkuvcBYC47l2x1SVkJlzhrx7iY+1t8sBf4+sO6Xd5y5x9Q:CrzVm/kkuveY3MGWzlx7DMS7dG9Q

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  068fe544b6e8c6abf62a71cd2526f7e71f96523bf546862cc24606ca3e9f60fc
- Size
  
  314KB
- MD5
  
  6e9f6ca506e3cdcb6af6de91edefd220
- SHA1
  
  82044a8d01dc569960c0241ee1ef7af9fdb976de
- SHA256
  
  068fe544b6e8c6abf62a71cd2526f7e71f96523bf546862cc24606ca3e9f60fc
- SHA512
  
  662d4e95f9e6454bab672aff1e13bf9fb3d645d4d6b968526df7cfa33ad213cddab4f4489e7ffcaf3083f854a2a5fa87a832070e65b98ac452a7558e1058de8b
- SSDEEP
  
  6144:CreyVm/vbUzkuvcBYC47l2x1SVkJlzhrx7iY+1t8sBf4+sO6Xd5y5x9Q:CrzVm/kkuveY3MGWzlx7DMS7dG9Q
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2