d879a28ad1c37d91ea642d31457d1e626e423fa8a68d0132f30e445fa246a215 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d879a28ad1c37d91ea642d31457d1e626e423fa8a68d0132f30e445fa246a215
Size

316KB
Sample

221107-dhk9asgddq
MD5

029c59013d977d7767904175ea9e33e0
SHA1

d2b578f16cf0a0da4e7eaa2e516f63a6f6112ad1
SHA256

d879a28ad1c37d91ea642d31457d1e626e423fa8a68d0132f30e445fa246a215
SHA512

c65d276817305fbe365e380aa9752a2f933e9be62ea1d31ac4abcbb29d12a2f646176411d9a434ce2965df9836af858b95f040badbdca5943d3209efec70d08a
SSDEEP

6144:urYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZo:urdkuveY3CvI5Zdkj6OEu1HSo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d879a28ad1c37d91ea642d31457d1e626e423fa8a68d0132f30e445fa246a215
- Size
  
  316KB
- MD5
  
  029c59013d977d7767904175ea9e33e0
- SHA1
  
  d2b578f16cf0a0da4e7eaa2e516f63a6f6112ad1
- SHA256
  
  d879a28ad1c37d91ea642d31457d1e626e423fa8a68d0132f30e445fa246a215
- SHA512
  
  c65d276817305fbe365e380aa9752a2f933e9be62ea1d31ac4abcbb29d12a2f646176411d9a434ce2965df9836af858b95f040badbdca5943d3209efec70d08a
- SSDEEP
  
  6144:urYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZo:urdkuveY3CvI5Zdkj6OEu1HSo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2