635b8f71b45e29e846c9293643813b91c77d4ce14f3321bded78b61a3dacb44c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

635b8f71b45e29e846c9293643813b91c77d4ce14f3321bded78b61a3dacb44c
Size

327KB
Sample

221020-gj3rhsged3
MD5

533c53907c21ff04ef1a9f5959fac180
SHA1

a7d6e1294d795af2884e4251bffb19ed9b5d622d
SHA256

635b8f71b45e29e846c9293643813b91c77d4ce14f3321bded78b61a3dacb44c
SHA512

69aa36cd66307ceed73eb98a0152725e9bbca8ae9f272509678def204f9d9d67fabdc2c778bcf3bd3b35c97050bda6d9f6ce30eb2f8734a1e964261add566de3
SSDEEP

6144:VrLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnX+L:VrAkuveY3sz9V8wlCs0I7v1s2BlUU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  635b8f71b45e29e846c9293643813b91c77d4ce14f3321bded78b61a3dacb44c
- Size
  
  327KB
- MD5
  
  533c53907c21ff04ef1a9f5959fac180
- SHA1
  
  a7d6e1294d795af2884e4251bffb19ed9b5d622d
- SHA256
  
  635b8f71b45e29e846c9293643813b91c77d4ce14f3321bded78b61a3dacb44c
- SHA512
  
  69aa36cd66307ceed73eb98a0152725e9bbca8ae9f272509678def204f9d9d67fabdc2c778bcf3bd3b35c97050bda6d9f6ce30eb2f8734a1e964261add566de3
- SSDEEP
  
  6144:VrLbUzkuvcBYC47l2xdz9V8wlbOsiV5INB3qs1sDLk3O8MI7lUnX+L:VrAkuveY3sz9V8wlCs0I7v1s2BlUU
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2