79a23feba4b5e93e9345d5dcbf21bc4df2cb44eab66f22fecd28ab16a6db022e | Triage

Sharing

General

Target

79a23feba4b5e93e9345d5dcbf21bc4df2cb44eab66f22fecd28ab16a6db022e
Size

326KB
Sample

221004-hzng7sghb5
MD5

5936a2797ea1d1d366423d4d33333be0
SHA1

1b0c08739802ede6d2b04b894282fde011e17593
SHA256

79a23feba4b5e93e9345d5dcbf21bc4df2cb44eab66f22fecd28ab16a6db022e
SHA512

26c23c0ba8948a1eb8ddd21e77a019e3e1617eb93117363a70c4a425ee9b58fbb7d85070d7cfcacd97ccc2ab2e07551fadc04834058a5e1e312c3eab8b8afd71
SSDEEP

6144:hrEbUzkuvcBYC47l2xddoJHe0Aa71kIWM2ZWGgUq:hr5kuveY3+oQm3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  79a23feba4b5e93e9345d5dcbf21bc4df2cb44eab66f22fecd28ab16a6db022e
- Size
  
  326KB
- MD5
  
  5936a2797ea1d1d366423d4d33333be0
- SHA1
  
  1b0c08739802ede6d2b04b894282fde011e17593
- SHA256
  
  79a23feba4b5e93e9345d5dcbf21bc4df2cb44eab66f22fecd28ab16a6db022e
- SHA512
  
  26c23c0ba8948a1eb8ddd21e77a019e3e1617eb93117363a70c4a425ee9b58fbb7d85070d7cfcacd97ccc2ab2e07551fadc04834058a5e1e312c3eab8b8afd71
- SSDEEP
  
  6144:hrEbUzkuvcBYC47l2xddoJHe0Aa71kIWM2ZWGgUq:hr5kuveY3+oQm3
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2