674889838d184933cb7d75943034b585b27dd8e1d57a6aaed6fe07ea0c5464ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

674889838d184933cb7d75943034b585b27dd8e1d57a6aaed6fe07ea0c5464ca
Size

327KB
Sample

221121-tvlctsce8x
MD5

318628368734b7b65773014d1adb6310
SHA1

7d3a04c9076ca2d397b3b7cfd99250f8d07858c3
SHA256

674889838d184933cb7d75943034b585b27dd8e1d57a6aaed6fe07ea0c5464ca
SHA512

39763d7a25fbdd232f17d9230704893ae0e83f3c3a77a6541e4312f908b224a2cea5af92b08f22377a0806513248ca870216a9c7303ca4952a799ae51a4a4796
SSDEEP

6144:8rzbUzkuvcBYC47l2xroiAucXLs/SBr+D662IreA77z3Z5F9AVtom:8rYkuveY3Ooi5r/x4Irhbuom

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  674889838d184933cb7d75943034b585b27dd8e1d57a6aaed6fe07ea0c5464ca
- Size
  
  327KB
- MD5
  
  318628368734b7b65773014d1adb6310
- SHA1
  
  7d3a04c9076ca2d397b3b7cfd99250f8d07858c3
- SHA256
  
  674889838d184933cb7d75943034b585b27dd8e1d57a6aaed6fe07ea0c5464ca
- SHA512
  
  39763d7a25fbdd232f17d9230704893ae0e83f3c3a77a6541e4312f908b224a2cea5af92b08f22377a0806513248ca870216a9c7303ca4952a799ae51a4a4796
- SSDEEP
  
  6144:8rzbUzkuvcBYC47l2xroiAucXLs/SBr+D662IreA77z3Z5F9AVtom:8rYkuveY3Ooi5r/x4Irhbuom
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2