d931ee8c5a84d722a8a968b52d3e793a0462313b149431919a3a4798d88eb654 | Triage

Sharing

General

Target

d931ee8c5a84d722a8a968b52d3e793a0462313b149431919a3a4798d88eb654
Size

322KB
Sample

221123-h612waad8v
MD5

6c39c3c85bc749bc3e049beb5e146f93
SHA1

994cead44071ac5ddbaebbca04a1d191c05e7b2c
SHA256

d931ee8c5a84d722a8a968b52d3e793a0462313b149431919a3a4798d88eb654
SHA512

8b2a5b608cb4b2d9a9bda1fac319a1c80c18f68decefd6c498d70934d5ea61df02eea8f00913d4b85dd66e52734ed720db693fae03fafd1564d63307068de6f8
SSDEEP

6144:QrV49uEo2S1YnQmCX492DkwNP3qpYFkKQdF8lgywXW/XK11AVBZ5jhqUnm8xcE:QrVQu6/eIo4qQdF8lEeXK11AZDqUmpE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d931ee8c5a84d722a8a968b52d3e793a0462313b149431919a3a4798d88eb654
- Size
  
  322KB
- MD5
  
  6c39c3c85bc749bc3e049beb5e146f93
- SHA1
  
  994cead44071ac5ddbaebbca04a1d191c05e7b2c
- SHA256
  
  d931ee8c5a84d722a8a968b52d3e793a0462313b149431919a3a4798d88eb654
- SHA512
  
  8b2a5b608cb4b2d9a9bda1fac319a1c80c18f68decefd6c498d70934d5ea61df02eea8f00913d4b85dd66e52734ed720db693fae03fafd1564d63307068de6f8
- SSDEEP
  
  6144:QrV49uEo2S1YnQmCX492DkwNP3qpYFkKQdF8lgywXW/XK11AVBZ5jhqUnm8xcE:QrVQu6/eIo4qQdF8lEeXK11AZDqUmpE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2