bb3d9d092630327d4ff7d2754216912bbe16e9d64822f04a3754d45f5d8c6a49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb3d9d092630327d4ff7d2754216912bbe16e9d64822f04a3754d45f5d8c6a49
Size

260KB
Sample

221107-krl1hsbadp
MD5

17b80570844990fa8fe80cd8dc6aee10
SHA1

c4f744c9db8baf62d8689c10c9e24de3915f5b2c
SHA256

bb3d9d092630327d4ff7d2754216912bbe16e9d64822f04a3754d45f5d8c6a49
SHA512

93dbb3f525d9d8f87d9d9620cdc8e0ce97fa1c8c97aee077a4b2d6649b548a7fc2cb2039e63782b276ebc9fe95207ed6007802bd827985717f5204e6f7d20ab4
SSDEEP

6144:SiwBkuiYbL63hvXYvr5rDM+Xy4zYzgym26Nhkv:SJBDKveFDi4Mgym267kv

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  bb3d9d092630327d4ff7d2754216912bbe16e9d64822f04a3754d45f5d8c6a49
- Size
  
  260KB
- MD5
  
  17b80570844990fa8fe80cd8dc6aee10
- SHA1
  
  c4f744c9db8baf62d8689c10c9e24de3915f5b2c
- SHA256
  
  bb3d9d092630327d4ff7d2754216912bbe16e9d64822f04a3754d45f5d8c6a49
- SHA512
  
  93dbb3f525d9d8f87d9d9620cdc8e0ce97fa1c8c97aee077a4b2d6649b548a7fc2cb2039e63782b276ebc9fe95207ed6007802bd827985717f5204e6f7d20ab4
- SSDEEP
  
  6144:SiwBkuiYbL63hvXYvr5rDM+Xy4zYzgym26Nhkv:SJBDKveFDi4Mgym267kv
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2