b71f0c53fff30f77a425190635075ccb7c0876d2d70cb7444bd4a22c83166de6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b71f0c53fff30f77a425190635075ccb7c0876d2d70cb7444bd4a22c83166de6
Size

316KB
Sample

221030-em3vkscdan
MD5

83cdc9d03e45c375bd6f25df3ef4bf3f
SHA1

03af3e5830791c04d80295c3760a57c61e17eb66
SHA256

b71f0c53fff30f77a425190635075ccb7c0876d2d70cb7444bd4a22c83166de6
SHA512

b28564db832a085c33705ad4c46fc6919d39c8161591675c316112d32c807216a11f15d7c5a4642ff5f549e6531340f311e1d3240e8a22561185562d0da72c71
SSDEEP

3072:3z3kAgVBq9QMvV5hfu+WPunop0k/IgASZRIV7ZS7CJTaHkgRmMFbYgRKOMHk7:7tIBdyjWuop0mIRpI7IikWWE7

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  b71f0c53fff30f77a425190635075ccb7c0876d2d70cb7444bd4a22c83166de6
- Size
  
  316KB
- MD5
  
  83cdc9d03e45c375bd6f25df3ef4bf3f
- SHA1
  
  03af3e5830791c04d80295c3760a57c61e17eb66
- SHA256
  
  b71f0c53fff30f77a425190635075ccb7c0876d2d70cb7444bd4a22c83166de6
- SHA512
  
  b28564db832a085c33705ad4c46fc6919d39c8161591675c316112d32c807216a11f15d7c5a4642ff5f549e6531340f311e1d3240e8a22561185562d0da72c71
- SSDEEP
  
  3072:3z3kAgVBq9QMvV5hfu+WPunop0k/IgASZRIV7ZS7CJTaHkgRmMFbYgRKOMHk7:7tIBdyjWuop0mIRpI7IikWWE7
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2