9563250ca2b3ecf8de04a6326e777de593f8b4a5c234f51ed58bddd0ea65e3f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9563250ca2b3ecf8de04a6326e777de593f8b4a5c234f51ed58bddd0ea65e3f9
Size

326KB
Sample

221019-r3s2jacbe7
MD5

a0b761d50562b00fe0c14f4a0d1ab420
SHA1

b59173b427bb1fc096da5c39876930d6d786432a
SHA256

9563250ca2b3ecf8de04a6326e777de593f8b4a5c234f51ed58bddd0ea65e3f9
SHA512

729d0af05dcac5ebfdefefd655563525943c51253a50099899b9f87f54da07dfe2e6dbffcc391f3bf112dea90bba0b5d7b739cf68ee13f55da1da742c1a8b40f
SSDEEP

6144:QrEbUzkuvcBYC47l2xddoJHe0Aa71kIWM2ZWGgU4:Qr5kuveY3+oQm1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9563250ca2b3ecf8de04a6326e777de593f8b4a5c234f51ed58bddd0ea65e3f9
- Size
  
  326KB
- MD5
  
  a0b761d50562b00fe0c14f4a0d1ab420
- SHA1
  
  b59173b427bb1fc096da5c39876930d6d786432a
- SHA256
  
  9563250ca2b3ecf8de04a6326e777de593f8b4a5c234f51ed58bddd0ea65e3f9
- SHA512
  
  729d0af05dcac5ebfdefefd655563525943c51253a50099899b9f87f54da07dfe2e6dbffcc391f3bf112dea90bba0b5d7b739cf68ee13f55da1da742c1a8b40f
- SSDEEP
  
  6144:QrEbUzkuvcBYC47l2xddoJHe0Aa71kIWM2ZWGgU4:Qr5kuveY3+oQm1
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2