b8c63a41ce581d08aaca2b1fb49aa13aaede9a1c9b439ae0f3d32b4020c3012f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8c63a41ce581d08aaca2b1fb49aa13aaede9a1c9b439ae0f3d32b4020c3012f
Size

313KB
Sample

221029-nk52ladhf4
MD5

c90e76594281f686995010bb356d9877
SHA1

282d28ffbdbc42dce49856fdbce007e091dd2f6c
SHA256

b8c63a41ce581d08aaca2b1fb49aa13aaede9a1c9b439ae0f3d32b4020c3012f
SHA512

370218161097aae0673b5a8e77894ed08f79d6a730676ac0e8c1be81771745c8bea9c15293c5969b29ad61addc2656fe98f9f3e98c94cf891d31a8162cfb39a0
SSDEEP

6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lab:/ryu6/eIo4vMResyEf0uP9d9UG00

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b8c63a41ce581d08aaca2b1fb49aa13aaede9a1c9b439ae0f3d32b4020c3012f
- Size
  
  313KB
- MD5
  
  c90e76594281f686995010bb356d9877
- SHA1
  
  282d28ffbdbc42dce49856fdbce007e091dd2f6c
- SHA256
  
  b8c63a41ce581d08aaca2b1fb49aa13aaede9a1c9b439ae0f3d32b4020c3012f
- SHA512
  
  370218161097aae0673b5a8e77894ed08f79d6a730676ac0e8c1be81771745c8bea9c15293c5969b29ad61addc2656fe98f9f3e98c94cf891d31a8162cfb39a0
- SSDEEP
  
  6144:/rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lab:/ryu6/eIo4vMResyEf0uP9d9UG00
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2