48d43fbf2769a4c3f9da8946488514a4b8959622544454eb4aef4a0600fccaf0 | Triage

Sharing

General

Target

48d43fbf2769a4c3f9da8946488514a4b8959622544454eb4aef4a0600fccaf0
Size

314KB
Sample

221107-dxxwmsefh5
MD5

b93e1a0a28586086a462cd825f2796c3
SHA1

e4d99b2b1808fe13fa21635546517aff8b35627d
SHA256

48d43fbf2769a4c3f9da8946488514a4b8959622544454eb4aef4a0600fccaf0
SHA512

0dfb88ab52a10d585399c579dc8aa2a440c60e5aa3783b21ccdf2d03f3580f0e50fef6e9052ee4e03d7a170c314d637f03844de5ce87735a4322d1cbc72802a2
SSDEEP

6144:drYbUzkuvcBYC47l2xa6g4FhwjZd/9d1XKxlo/ecwrHs5N:drdkuveY36kjZP/XKxlSZAHo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  48d43fbf2769a4c3f9da8946488514a4b8959622544454eb4aef4a0600fccaf0
- Size
  
  314KB
- MD5
  
  b93e1a0a28586086a462cd825f2796c3
- SHA1
  
  e4d99b2b1808fe13fa21635546517aff8b35627d
- SHA256
  
  48d43fbf2769a4c3f9da8946488514a4b8959622544454eb4aef4a0600fccaf0
- SHA512
  
  0dfb88ab52a10d585399c579dc8aa2a440c60e5aa3783b21ccdf2d03f3580f0e50fef6e9052ee4e03d7a170c314d637f03844de5ce87735a4322d1cbc72802a2
- SSDEEP
  
  6144:drYbUzkuvcBYC47l2xa6g4FhwjZd/9d1XKxlo/ecwrHs5N:drdkuveY36kjZP/XKxlSZAHo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2