d0d9d587abf4bb4307dbd17d2aa52471f02cd87027c30b1f1ba440def901cde3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0d9d587abf4bb4307dbd17d2aa52471f02cd87027c30b1f1ba440def901cde3
Size

316KB
Sample

221011-dqqhzscbh7
MD5

60d9b451843d4e206021e919167a3ed0
SHA1

e08bc90e28bbc16ee153e3734d3186f693b1f6be
SHA256

d0d9d587abf4bb4307dbd17d2aa52471f02cd87027c30b1f1ba440def901cde3
SHA512

30e5a8191325c1353700a36e3569ffeea80ee64cc77975e7b24694f8c5aff41ee5f3a8b0e225c578880ca721b628e06cda6e0e13b4fff75a4b4531a5db503797
SSDEEP

6144:Sr+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmi2:SrXkuveY3z+U83tbLpmsgh/2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d0d9d587abf4bb4307dbd17d2aa52471f02cd87027c30b1f1ba440def901cde3
- Size
  
  316KB
- MD5
  
  60d9b451843d4e206021e919167a3ed0
- SHA1
  
  e08bc90e28bbc16ee153e3734d3186f693b1f6be
- SHA256
  
  d0d9d587abf4bb4307dbd17d2aa52471f02cd87027c30b1f1ba440def901cde3
- SHA512
  
  30e5a8191325c1353700a36e3569ffeea80ee64cc77975e7b24694f8c5aff41ee5f3a8b0e225c578880ca721b628e06cda6e0e13b4fff75a4b4531a5db503797
- SSDEEP
  
  6144:Sr+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmi2:SrXkuveY3z+U83tbLpmsgh/2
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2