0ca8f568c71945725a28ab985788520a2a58ee1d0b3d89bfa3b39d72c2d27c29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ca8f568c71945725a28ab985788520a2a58ee1d0b3d89bfa3b39d72c2d27c29
Size

316KB
Sample

221020-tbx8aacdh7
MD5

a0632adc37c45082dba08f19e3950a00
SHA1

0054941c40557e191439ad21498eec75d49bfd17
SHA256

0ca8f568c71945725a28ab985788520a2a58ee1d0b3d89bfa3b39d72c2d27c29
SHA512

af69348375448c74dc32e08c01f256caddfd2d87ca2e08ef0d995414ab5c7eaef7f01516f4ef6cc4cc524bb9283387262d39bf5a5705da67f5524ce69d6be6f8
SSDEEP

6144:NrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bS1:Nr6kuveY3TT2XdGp9xRC4bS1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0ca8f568c71945725a28ab985788520a2a58ee1d0b3d89bfa3b39d72c2d27c29
- Size
  
  316KB
- MD5
  
  a0632adc37c45082dba08f19e3950a00
- SHA1
  
  0054941c40557e191439ad21498eec75d49bfd17
- SHA256
  
  0ca8f568c71945725a28ab985788520a2a58ee1d0b3d89bfa3b39d72c2d27c29
- SHA512
  
  af69348375448c74dc32e08c01f256caddfd2d87ca2e08ef0d995414ab5c7eaef7f01516f4ef6cc4cc524bb9283387262d39bf5a5705da67f5524ce69d6be6f8
- SSDEEP
  
  6144:NrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bS1:Nr6kuveY3TT2XdGp9xRC4bS1
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2