6f0dcaae040de9b9231b9d4793c08c2887711546b33cf51a564efe5120eba02e | Triage

Sharing

General

Target

6f0dcaae040de9b9231b9d4793c08c2887711546b33cf51a564efe5120eba02e
Size

315KB
Sample

221121-tt12wshb69
MD5

206cc49455a9b5e1f77e28f124a049b0
SHA1

6ec6d069c2cf3eef80d8300f7f71f792499fbf29
SHA256

6f0dcaae040de9b9231b9d4793c08c2887711546b33cf51a564efe5120eba02e
SHA512

48c9ae44043e6647f3a711397624a3198b96c8b0aa6ea811a6006e62d2ec0620a94e1f466c0ffa661a0fbfa6e9d67c3cedd7df2a321196c4b11ae9d5b43ec2c8
SSDEEP

6144:lreyVm/tSbUzkuvcBYC47l2xywzjVaXJuM39ZLg5FxXsD+49oCg0o2z:lrzVm/pkuveY3nwdatzg5fXsD+49lg9s

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6f0dcaae040de9b9231b9d4793c08c2887711546b33cf51a564efe5120eba02e
- Size
  
  315KB
- MD5
  
  206cc49455a9b5e1f77e28f124a049b0
- SHA1
  
  6ec6d069c2cf3eef80d8300f7f71f792499fbf29
- SHA256
  
  6f0dcaae040de9b9231b9d4793c08c2887711546b33cf51a564efe5120eba02e
- SHA512
  
  48c9ae44043e6647f3a711397624a3198b96c8b0aa6ea811a6006e62d2ec0620a94e1f466c0ffa661a0fbfa6e9d67c3cedd7df2a321196c4b11ae9d5b43ec2c8
- SSDEEP
  
  6144:lreyVm/tSbUzkuvcBYC47l2xywzjVaXJuM39ZLg5FxXsD+49oCg0o2z:lrzVm/pkuveY3nwdatzg5fXsD+49lg9s
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2