6131f93b64e66232195c2dc52d86c35d52c8463725bfb44d4036a8aa37b6b284 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6131f93b64e66232195c2dc52d86c35d52c8463725bfb44d4036a8aa37b6b284
Size

316KB
Sample

221019-r6jl9scgfj
MD5

a171f7f1411ef67942bbdfd53410dc90
SHA1

0179462574186d3a72fdf98bb9c49ec9751d25b6
SHA256

6131f93b64e66232195c2dc52d86c35d52c8463725bfb44d4036a8aa37b6b284
SHA512

740e5b59458baf922d35cb93f659fb1527aee2f3fd63ba62ed0b934187debdac808e3ca65ab3f9b0ef2b3293fad4a7fbd42d7b14242a3a4de521fded1c50febf
SSDEEP

6144:arabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKw:arDkuveY3N2eHnIPmQP6vqv4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6131f93b64e66232195c2dc52d86c35d52c8463725bfb44d4036a8aa37b6b284
- Size
  
  316KB
- MD5
  
  a171f7f1411ef67942bbdfd53410dc90
- SHA1
  
  0179462574186d3a72fdf98bb9c49ec9751d25b6
- SHA256
  
  6131f93b64e66232195c2dc52d86c35d52c8463725bfb44d4036a8aa37b6b284
- SHA512
  
  740e5b59458baf922d35cb93f659fb1527aee2f3fd63ba62ed0b934187debdac808e3ca65ab3f9b0ef2b3293fad4a7fbd42d7b14242a3a4de521fded1c50febf
- SSDEEP
  
  6144:arabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKw:arDkuveY3N2eHnIPmQP6vqv4
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2