0f967f9e8cadb86824c1013607db693d8966a8ab53bc0161369a770e506838a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f967f9e8cadb86824c1013607db693d8966a8ab53bc0161369a770e506838a9
Size

333KB
Sample

221021-d8qayaaeh5
MD5

5ca1dd1dd217de5a7749856bfac764b0
SHA1

f818faaf1c97ea4a678e2661699d25a4035bc43a
SHA256

0f967f9e8cadb86824c1013607db693d8966a8ab53bc0161369a770e506838a9
SHA512

edc7eda6f3e6e0ac1e782df8d19510a2fdea38c14b1ae787d6418b83186a4457d9ffd3b334bb3d8d37d72ddb18205706660745a81411ddd3b6e8f849ec568b36
SSDEEP

6144:Wrv3cTbUzkuvcBYC47l2xjXxgblRkM6zxmxhyrkTo9dSlR/S2dnoOq:Wrv3c4kuveY3oX6bDn6tmjyMqSa8noOq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0f967f9e8cadb86824c1013607db693d8966a8ab53bc0161369a770e506838a9
- Size
  
  333KB
- MD5
  
  5ca1dd1dd217de5a7749856bfac764b0
- SHA1
  
  f818faaf1c97ea4a678e2661699d25a4035bc43a
- SHA256
  
  0f967f9e8cadb86824c1013607db693d8966a8ab53bc0161369a770e506838a9
- SHA512
  
  edc7eda6f3e6e0ac1e782df8d19510a2fdea38c14b1ae787d6418b83186a4457d9ffd3b334bb3d8d37d72ddb18205706660745a81411ddd3b6e8f849ec568b36
- SSDEEP
  
  6144:Wrv3cTbUzkuvcBYC47l2xjXxgblRkM6zxmxhyrkTo9dSlR/S2dnoOq:Wrv3c4kuveY3oX6bDn6tmjyMqSa8noOq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2