b0f7f0983b6de5949216d9a3c036f77f8a29f4a93c5a346015076ba0628ff5a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0f7f0983b6de5949216d9a3c036f77f8a29f4a93c5a346015076ba0628ff5a7
Size

327KB
Sample

221029-hg8enafcdj
MD5

8c82a07205635bf7cd69fcd64fdc71ba
SHA1

81a0734a08c3083402d14cba429283cf115cd67d
SHA256

b0f7f0983b6de5949216d9a3c036f77f8a29f4a93c5a346015076ba0628ff5a7
SHA512

7b68c1a55c8045bc15099ee48c0d81c6e60acdad100a4e05f9c7b27078f7afe7da266f8dee6a848d52c926b61035c848e593cb6c39fe67ffcacd39335fbf681f
SSDEEP

6144:9rVbUzkuvcBYC47l2xt81bM31jFryMm/+3pZasr0AtbgTtCybrNMcS:9rGkuveY38aExzr3pZh0d8EJ9S

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b0f7f0983b6de5949216d9a3c036f77f8a29f4a93c5a346015076ba0628ff5a7
- Size
  
  327KB
- MD5
  
  8c82a07205635bf7cd69fcd64fdc71ba
- SHA1
  
  81a0734a08c3083402d14cba429283cf115cd67d
- SHA256
  
  b0f7f0983b6de5949216d9a3c036f77f8a29f4a93c5a346015076ba0628ff5a7
- SHA512
  
  7b68c1a55c8045bc15099ee48c0d81c6e60acdad100a4e05f9c7b27078f7afe7da266f8dee6a848d52c926b61035c848e593cb6c39fe67ffcacd39335fbf681f
- SSDEEP
  
  6144:9rVbUzkuvcBYC47l2xt81bM31jFryMm/+3pZasr0AtbgTtCybrNMcS:9rGkuveY38aExzr3pZh0d8EJ9S
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2