96e8b6a5f33d3ca5f5380b28dd03b25fdc8b6a56f474de3ea33694064707704b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96e8b6a5f33d3ca5f5380b28dd03b25fdc8b6a56f474de3ea33694064707704b
Size

316KB
Sample

221021-dw24zahhhq
MD5

5cd5f67db11d052bb61c6dd93522aaf0
SHA1

a47ceac5c7a89f93e5b08a13ca8cfff49c549c5f
SHA256

96e8b6a5f33d3ca5f5380b28dd03b25fdc8b6a56f474de3ea33694064707704b
SHA512

f63c95ce12242a4569d30147b5dc49ee78a79cc6ad456655e7d03546e00ba349e277fd481ce8d37f02a0f1c6ef78fdec0deee2dfb4f75d451e1f58490d42e36a
SSDEEP

6144:qribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xz:qr7kuveY33FJUo7MDkA6S

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  96e8b6a5f33d3ca5f5380b28dd03b25fdc8b6a56f474de3ea33694064707704b
- Size
  
  316KB
- MD5
  
  5cd5f67db11d052bb61c6dd93522aaf0
- SHA1
  
  a47ceac5c7a89f93e5b08a13ca8cfff49c549c5f
- SHA256
  
  96e8b6a5f33d3ca5f5380b28dd03b25fdc8b6a56f474de3ea33694064707704b
- SHA512
  
  f63c95ce12242a4569d30147b5dc49ee78a79cc6ad456655e7d03546e00ba349e277fd481ce8d37f02a0f1c6ef78fdec0deee2dfb4f75d451e1f58490d42e36a
- SSDEEP
  
  6144:qribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xz:qr7kuveY33FJUo7MDkA6S
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2