866835de79072e21e09cd9c1ec327855f5a638978c2df0c7b9eb7a1eb0c2c2ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

866835de79072e21e09cd9c1ec327855f5a638978c2df0c7b9eb7a1eb0c2c2ec
Size

318KB
Sample

221003-y6lvyseccn
MD5

665d1c67db60fa9545403a282d5b8901
SHA1

27aaea5f629703035376905af2c575c4130899f7
SHA256

866835de79072e21e09cd9c1ec327855f5a638978c2df0c7b9eb7a1eb0c2c2ec
SHA512

f26a9b8e85c101527f90777f5a63528c91f76bb7de0f7495c678d757290f3486173ba5f31dfab99c99d8f0eb813180f70c4bd9d65b48637a3d0ef09491816137
SSDEEP

6144:F6SnLP2OL6AzwGXgIG8a7bPm8GOk7GJxHDS5:F6SnLOU6MwGjG8anPnGOv7u5

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  866835de79072e21e09cd9c1ec327855f5a638978c2df0c7b9eb7a1eb0c2c2ec
- Size
  
  318KB
- MD5
  
  665d1c67db60fa9545403a282d5b8901
- SHA1
  
  27aaea5f629703035376905af2c575c4130899f7
- SHA256
  
  866835de79072e21e09cd9c1ec327855f5a638978c2df0c7b9eb7a1eb0c2c2ec
- SHA512
  
  f26a9b8e85c101527f90777f5a63528c91f76bb7de0f7495c678d757290f3486173ba5f31dfab99c99d8f0eb813180f70c4bd9d65b48637a3d0ef09491816137
- SSDEEP
  
  6144:F6SnLP2OL6AzwGXgIG8a7bPm8GOk7GJxHDS5:F6SnLOU6MwGjG8anPnGOv7u5
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2