5653be5d0b755eafaf858ead0076eb16a1e7be59567e66ad3c096bfb8822e6cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5653be5d0b755eafaf858ead0076eb16a1e7be59567e66ad3c096bfb8822e6cf
Size

305KB
Sample

221012-tn8vjsahg2
MD5

79d52f04b0dccee7297f70f38b6546a0
SHA1

707ad5117a4c2bd76e827ad7671885d5b248c630
SHA256

5653be5d0b755eafaf858ead0076eb16a1e7be59567e66ad3c096bfb8822e6cf
SHA512

eb73d2c1a6b0e8c86fe19d5b1e94de7e368124b2567570682a8adf8b6465a62d299246d69118b21c523e758786be217c408c02c13b5a4c9b3740db3862f87e18
SSDEEP

6144:RrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPd:Rrkuu6/eIo4tQW62T+uTwM6YVxm24d

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5653be5d0b755eafaf858ead0076eb16a1e7be59567e66ad3c096bfb8822e6cf
- Size
  
  305KB
- MD5
  
  79d52f04b0dccee7297f70f38b6546a0
- SHA1
  
  707ad5117a4c2bd76e827ad7671885d5b248c630
- SHA256
  
  5653be5d0b755eafaf858ead0076eb16a1e7be59567e66ad3c096bfb8822e6cf
- SHA512
  
  eb73d2c1a6b0e8c86fe19d5b1e94de7e368124b2567570682a8adf8b6465a62d299246d69118b21c523e758786be217c408c02c13b5a4c9b3740db3862f87e18
- SSDEEP
  
  6144:RrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPd:Rrkuu6/eIo4tQW62T+uTwM6YVxm24d
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2