8c5f1f89e04b2b04b43a156c1176ab7dc217bbb8872048b1de70a735bd0b3688 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c5f1f89e04b2b04b43a156c1176ab7dc217bbb8872048b1de70a735bd0b3688
Size

327KB
Sample

221012-s9an7saaf5
MD5

65393a77691788366f403b62ffa94e20
SHA1

f5ed166338952cd985b4cdb0be208c3f4a1e6c71
SHA256

8c5f1f89e04b2b04b43a156c1176ab7dc217bbb8872048b1de70a735bd0b3688
SHA512

8d903f91b1144f137465d832067b7475c568207de9845542910a84e8343b5a34d70bbe1aaac2a651475d7cdd49970935e92aec55fade88feed342496d1ee1286
SSDEEP

6144:GrYbUzkuvcBYC47l2xD5yeXezc22Gk6lg3oFB1bt+6AdI5eVqN:GrdkuveY3C5yaGkeg3oFbt+FC5eQN

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8c5f1f89e04b2b04b43a156c1176ab7dc217bbb8872048b1de70a735bd0b3688
- Size
  
  327KB
- MD5
  
  65393a77691788366f403b62ffa94e20
- SHA1
  
  f5ed166338952cd985b4cdb0be208c3f4a1e6c71
- SHA256
  
  8c5f1f89e04b2b04b43a156c1176ab7dc217bbb8872048b1de70a735bd0b3688
- SHA512
  
  8d903f91b1144f137465d832067b7475c568207de9845542910a84e8343b5a34d70bbe1aaac2a651475d7cdd49970935e92aec55fade88feed342496d1ee1286
- SSDEEP
  
  6144:GrYbUzkuvcBYC47l2xD5yeXezc22Gk6lg3oFB1bt+6AdI5eVqN:GrdkuveY3C5yaGkeg3oFbt+FC5eQN
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2