defa17cd4aa5484aa90009fd157389b7e84bcbc57f5eae507b98b749a5f0fc26 | Triage

Sharing

General

Target

defa17cd4aa5484aa90009fd157389b7e84bcbc57f5eae507b98b749a5f0fc26
Size

316KB
Sample

221123-h4fyxseh45
MD5

47f8317ae1719ff18d98aa455870f941
SHA1

0ac41a092e39e2896b872ca8da61462c97597aa1
SHA256

defa17cd4aa5484aa90009fd157389b7e84bcbc57f5eae507b98b749a5f0fc26
SHA512

102c4251abe3a1e274fae01b57c55e2e3fc1524f2a2e9141c91a0cf4f3320bf9eab87d001639a82c0baf95087d08b3c40d0cec8a1bbdf1c1501c79108a105dea
SSDEEP

6144:1rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSF:1r6kuveY3TT2XdGp9xRC4bSF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  defa17cd4aa5484aa90009fd157389b7e84bcbc57f5eae507b98b749a5f0fc26
- Size
  
  316KB
- MD5
  
  47f8317ae1719ff18d98aa455870f941
- SHA1
  
  0ac41a092e39e2896b872ca8da61462c97597aa1
- SHA256
  
  defa17cd4aa5484aa90009fd157389b7e84bcbc57f5eae507b98b749a5f0fc26
- SHA512
  
  102c4251abe3a1e274fae01b57c55e2e3fc1524f2a2e9141c91a0cf4f3320bf9eab87d001639a82c0baf95087d08b3c40d0cec8a1bbdf1c1501c79108a105dea
- SSDEEP
  
  6144:1rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSF:1r6kuveY3TT2XdGp9xRC4bSF
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2