dba094e7d117b5ca33694f03e66e0b58ebc91dfee6d933aa7db29466509be752 | Triage

Sharing

General

Target

dba094e7d117b5ca33694f03e66e0b58ebc91dfee6d933aa7db29466509be752
Size

316KB
Sample

221123-h5x9laeh89
MD5

5bdcd479115bfe93faae3ef639f0d848
SHA1

dd6e9e8735e756fc5c915b9e4bc1aa8cd3fdec25
SHA256

dba094e7d117b5ca33694f03e66e0b58ebc91dfee6d933aa7db29466509be752
SHA512

afdbda783f73456ad538f2908004790efd052c2295f6ac0c997e025820f10d61e9828b8cf114f6a90b5ab076f3a421f3041ad507e2c5388ed3c276efed3abe16
SSDEEP

6144:Zr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDAr5:Zr+kuveY3hdLzrfn5A1KtBG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dba094e7d117b5ca33694f03e66e0b58ebc91dfee6d933aa7db29466509be752
- Size
  
  316KB
- MD5
  
  5bdcd479115bfe93faae3ef639f0d848
- SHA1
  
  dd6e9e8735e756fc5c915b9e4bc1aa8cd3fdec25
- SHA256
  
  dba094e7d117b5ca33694f03e66e0b58ebc91dfee6d933aa7db29466509be752
- SHA512
  
  afdbda783f73456ad538f2908004790efd052c2295f6ac0c997e025820f10d61e9828b8cf114f6a90b5ab076f3a421f3041ad507e2c5388ed3c276efed3abe16
- SSDEEP
  
  6144:Zr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDAr5:Zr+kuveY3hdLzrfn5A1KtBG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2