f4ed7df4d3320b43cff3a1b2f005a1f958ebfd4f6c76bd69a9846f732f8c23a1 | Triage

Sharing

General

Target

f4ed7df4d3320b43cff3a1b2f005a1f958ebfd4f6c76bd69a9846f732f8c23a1
Size

313KB
Sample

221029-d8x1sabaan
MD5

3f8844ccf700f4f77b50bea09339962f
SHA1

b02d93d598fa52a672ade491146062cffb7902b0
SHA256

f4ed7df4d3320b43cff3a1b2f005a1f958ebfd4f6c76bd69a9846f732f8c23a1
SHA512

da55e74d4efe65c26cc4abce00394f7f3595b8e4499716492a9d9749ba52ae3bfbb1c70387d17cd7caf87cbfb7e9db447b923dae0042ebf204634a189d9a3502
SSDEEP

6144:YrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDE:Yrfu6/eIo4jVW5soVCcQovoO0DJM+E7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f4ed7df4d3320b43cff3a1b2f005a1f958ebfd4f6c76bd69a9846f732f8c23a1
- Size
  
  313KB
- MD5
  
  3f8844ccf700f4f77b50bea09339962f
- SHA1
  
  b02d93d598fa52a672ade491146062cffb7902b0
- SHA256
  
  f4ed7df4d3320b43cff3a1b2f005a1f958ebfd4f6c76bd69a9846f732f8c23a1
- SHA512
  
  da55e74d4efe65c26cc4abce00394f7f3595b8e4499716492a9d9749ba52ae3bfbb1c70387d17cd7caf87cbfb7e9db447b923dae0042ebf204634a189d9a3502
- SSDEEP
  
  6144:YrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDE:Yrfu6/eIo4jVW5soVCcQovoO0DJM+E7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2