596bdc1730aa4dc1e19dcd5c40caa9bbed816d5b078051314a19889fdf58f49e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

596bdc1730aa4dc1e19dcd5c40caa9bbed816d5b078051314a19889fdf58f49e
Size

316KB
Sample

221030-hgm4qahacq
MD5

a27c8321157685c1542c8720eff235b0
SHA1

9af908afe06beaf894d6b4a05bbf595497a8ee0b
SHA256

596bdc1730aa4dc1e19dcd5c40caa9bbed816d5b078051314a19889fdf58f49e
SHA512

beacb3b38e5500958593852c7d69511b787e9c5e5ad713ec94aadf8604aa7a0f3031c8457956fd9ec4eb25d7a535bf5639e8075f1c11c288c9cfd8d6d78a8243
SSDEEP

6144:1rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSl:1r6kuveY3TT2XdGp9xRC4bSl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  596bdc1730aa4dc1e19dcd5c40caa9bbed816d5b078051314a19889fdf58f49e
- Size
  
  316KB
- MD5
  
  a27c8321157685c1542c8720eff235b0
- SHA1
  
  9af908afe06beaf894d6b4a05bbf595497a8ee0b
- SHA256
  
  596bdc1730aa4dc1e19dcd5c40caa9bbed816d5b078051314a19889fdf58f49e
- SHA512
  
  beacb3b38e5500958593852c7d69511b787e9c5e5ad713ec94aadf8604aa7a0f3031c8457956fd9ec4eb25d7a535bf5639e8075f1c11c288c9cfd8d6d78a8243
- SSDEEP
  
  6144:1rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSl:1r6kuveY3TT2XdGp9xRC4bSl
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2