d915859a6c9f00b867ef8c479199d05c105eb1e3e5490a0bdcf3aed10f43d3f7 | Triage

Sharing

General

Target

d915859a6c9f00b867ef8c479199d05c105eb1e3e5490a0bdcf3aed10f43d3f7
Size

314KB
Sample

221123-h6368sfa47
MD5

0756ef2cead8ca355c4e7b8a085d33f9
SHA1

27d10b6814cd4b8cf396e4051a75909af326f01c
SHA256

d915859a6c9f00b867ef8c479199d05c105eb1e3e5490a0bdcf3aed10f43d3f7
SHA512

a4a895493fcc414651859faa1e518d114f98bf9a1ecf0bf8bf52ba71fdeca890303f7cbfd2bebbb4bac55f414d7b7edeb9c71849d6a8392b53bb5caa4561361d
SSDEEP

6144:wrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwc:wr1kuveY35YO67Wxz7wc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d915859a6c9f00b867ef8c479199d05c105eb1e3e5490a0bdcf3aed10f43d3f7
- Size
  
  314KB
- MD5
  
  0756ef2cead8ca355c4e7b8a085d33f9
- SHA1
  
  27d10b6814cd4b8cf396e4051a75909af326f01c
- SHA256
  
  d915859a6c9f00b867ef8c479199d05c105eb1e3e5490a0bdcf3aed10f43d3f7
- SHA512
  
  a4a895493fcc414651859faa1e518d114f98bf9a1ecf0bf8bf52ba71fdeca890303f7cbfd2bebbb4bac55f414d7b7edeb9c71849d6a8392b53bb5caa4561361d
- SSDEEP
  
  6144:wrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwc:wr1kuveY35YO67Wxz7wc
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2