9f64faad87b47cfbf035de8a631aab8ab6d1c20a3a289373b016fc319f742137 | Triage

Sharing

General

Target

9f64faad87b47cfbf035de8a631aab8ab6d1c20a3a289373b016fc319f742137
Size

315KB
Sample

221011-dvm9escefr
MD5

4400e7e273d59248559fdaaf7aedad90
SHA1

d212c5bfee4bfd42e2df732179daf5b3289d085d
SHA256

9f64faad87b47cfbf035de8a631aab8ab6d1c20a3a289373b016fc319f742137
SHA512

0ef175c1b1b431453802716e500b22b27ee7e5a0ed2bdf2a672990600264c684e102acca23352ee868d3d00fc2e39e025c65044f84b66a7b454e294d157ca283
SSDEEP

6144:rr3bUzkuvcBYC47l2xiFjox21H9mbWnqnHB/Jc9BItkszgx4ygDY:rrckuveY3fFj4ThVkszC4yh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9f64faad87b47cfbf035de8a631aab8ab6d1c20a3a289373b016fc319f742137
- Size
  
  315KB
- MD5
  
  4400e7e273d59248559fdaaf7aedad90
- SHA1
  
  d212c5bfee4bfd42e2df732179daf5b3289d085d
- SHA256
  
  9f64faad87b47cfbf035de8a631aab8ab6d1c20a3a289373b016fc319f742137
- SHA512
  
  0ef175c1b1b431453802716e500b22b27ee7e5a0ed2bdf2a672990600264c684e102acca23352ee868d3d00fc2e39e025c65044f84b66a7b454e294d157ca283
- SSDEEP
  
  6144:rr3bUzkuvcBYC47l2xiFjox21H9mbWnqnHB/Jc9BItkszgx4ygDY:rrckuveY3fFj4ThVkszC4yh
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2