db4d08d0418f00077f717e68bc4821f4b21c4b2c34417f2802ac6653371af32a | Triage

Sharing

General

Target

db4d08d0418f00077f717e68bc4821f4b21c4b2c34417f2802ac6653371af32a
Size

327KB
Sample

221123-h535vaeh94
MD5

088da6b63c8989fd0f28ed32d3c61da4
SHA1

c6f4bf6059e658387525c7d90b370ff574542adb
SHA256

db4d08d0418f00077f717e68bc4821f4b21c4b2c34417f2802ac6653371af32a
SHA512

73165c63473bc9f4fc54f8a31997985d7c84610da5930c3c4ba8d0b1d546433c5953c253b4d4cdc8bf8258a6fbd5044a6403d8922745ad5d6ea68b3463ef631c
SSDEEP

6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Zr4iu6/eIo4Rsw33AtsmQL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  db4d08d0418f00077f717e68bc4821f4b21c4b2c34417f2802ac6653371af32a
- Size
  
  327KB
- MD5
  
  088da6b63c8989fd0f28ed32d3c61da4
- SHA1
  
  c6f4bf6059e658387525c7d90b370ff574542adb
- SHA256
  
  db4d08d0418f00077f717e68bc4821f4b21c4b2c34417f2802ac6653371af32a
- SHA512
  
  73165c63473bc9f4fc54f8a31997985d7c84610da5930c3c4ba8d0b1d546433c5953c253b4d4cdc8bf8258a6fbd5044a6403d8922745ad5d6ea68b3463ef631c
- SSDEEP
  
  6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Zr4iu6/eIo4Rsw33AtsmQL
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2