dba973874470e70dd33660af21355ee7cff43fa478f42fc7b66cf2100cf9d6be | Triage

Sharing

General

Target

dba973874470e70dd33660af21355ee7cff43fa478f42fc7b66cf2100cf9d6be
Size

313KB
Sample

221123-h5xm3aad5s
MD5

64f9f0c8d03bc9529feac1fa25675e6e
SHA1

3f9fbf27b42898882745b8aee15b14b6294c9774
SHA256

dba973874470e70dd33660af21355ee7cff43fa478f42fc7b66cf2100cf9d6be
SHA512

05daedc3c70db94d47734e62c4b565fa6209a957b0f7e02c67b1da240334d2cf4bf1485d466a0634dfa4d6d42c6b9fb7dfbe5092336c71c4a213d5ca3752dc24
SSDEEP

6144:orb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM+:orRu6/eIo4t3PuFITKUAJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dba973874470e70dd33660af21355ee7cff43fa478f42fc7b66cf2100cf9d6be
- Size
  
  313KB
- MD5
  
  64f9f0c8d03bc9529feac1fa25675e6e
- SHA1
  
  3f9fbf27b42898882745b8aee15b14b6294c9774
- SHA256
  
  dba973874470e70dd33660af21355ee7cff43fa478f42fc7b66cf2100cf9d6be
- SHA512
  
  05daedc3c70db94d47734e62c4b565fa6209a957b0f7e02c67b1da240334d2cf4bf1485d466a0634dfa4d6d42c6b9fb7dfbe5092336c71c4a213d5ca3752dc24
- SSDEEP
  
  6144:orb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM+:orRu6/eIo4t3PuFITKUAJ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2