0a5d767031df5182aceb63d3d84cc13dc50df740bd8e84d795cc98df4c529892 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a5d767031df5182aceb63d3d84cc13dc50df740bd8e84d795cc98df4c529892
Size

316KB
Sample

221107-d5afbahdar
MD5

0f2be379b0d2cc4bd2748035393acc90
SHA1

b33c31f2d23e3fe6a25e7c45aca97a4e84d33a9c
SHA256

0a5d767031df5182aceb63d3d84cc13dc50df740bd8e84d795cc98df4c529892
SHA512

c1be6229be4fcaec2cd2b54702ab5120af260eb09ebb152c6eeb72e29f875c4afaf2fcdd3c703765f6731cce2732da949591789774a5ac6302e87797549e2b96
SSDEEP

6144:gr6bUzkuvcBYC47l2xvr8B113MzGl+DfOsLkwlOIdWq2sE:grjkuveY37D3h8fO+sIdWq27

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0a5d767031df5182aceb63d3d84cc13dc50df740bd8e84d795cc98df4c529892
- Size
  
  316KB
- MD5
  
  0f2be379b0d2cc4bd2748035393acc90
- SHA1
  
  b33c31f2d23e3fe6a25e7c45aca97a4e84d33a9c
- SHA256
  
  0a5d767031df5182aceb63d3d84cc13dc50df740bd8e84d795cc98df4c529892
- SHA512
  
  c1be6229be4fcaec2cd2b54702ab5120af260eb09ebb152c6eeb72e29f875c4afaf2fcdd3c703765f6731cce2732da949591789774a5ac6302e87797549e2b96
- SSDEEP
  
  6144:gr6bUzkuvcBYC47l2xvr8B113MzGl+DfOsLkwlOIdWq2sE:grjkuveY37D3h8fO+sIdWq27
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2