db76effcf3326840210399aa1c6e6273c1fcc796e265a4de7f92d4235b6d9d5b | Triage

Sharing

General

Target

db76effcf3326840210399aa1c6e6273c1fcc796e265a4de7f92d4235b6d9d5b
Size

333KB
Sample

221123-h511gseh93
MD5

6b265f9226c9a412385fa0593fffeb14
SHA1

90a9d055b3665aa957ad4dbe9cb9bfeba51cf172
SHA256

db76effcf3326840210399aa1c6e6273c1fcc796e265a4de7f92d4235b6d9d5b
SHA512

e29915595d7e582206f7c628b4d18b68f09f4476a489ea5bb7c43f890f6650717eb8fadadc3272deb4403820b510dd5ce954968f644c69118344097763d10c51
SSDEEP

6144:drv3c7bUzkuvcBYC47l2xbKBFp6nGFO5K9eX+txEjp0YyJve6VmX:drv3cwkuveY3EKLlg5ulEGYivegmX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  db76effcf3326840210399aa1c6e6273c1fcc796e265a4de7f92d4235b6d9d5b
- Size
  
  333KB
- MD5
  
  6b265f9226c9a412385fa0593fffeb14
- SHA1
  
  90a9d055b3665aa957ad4dbe9cb9bfeba51cf172
- SHA256
  
  db76effcf3326840210399aa1c6e6273c1fcc796e265a4de7f92d4235b6d9d5b
- SHA512
  
  e29915595d7e582206f7c628b4d18b68f09f4476a489ea5bb7c43f890f6650717eb8fadadc3272deb4403820b510dd5ce954968f644c69118344097763d10c51
- SSDEEP
  
  6144:drv3c7bUzkuvcBYC47l2xbKBFp6nGFO5K9eX+txEjp0YyJve6VmX:drv3cwkuveY3EKLlg5ulEGYivegmX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2