d975119bb8ac8ea49072e4711729b4a5a911c2959b38548716ce794cc85f2302 | Triage

Sharing

General

Target

d975119bb8ac8ea49072e4711729b4a5a911c2959b38548716ce794cc85f2302
Size

313KB
Sample

221123-h6w3xsad7z
MD5

cf6147f71080aecb2c2165defdf58c37
SHA1

af0e2ee1a4e8777b16a23cec259dff4c82a9a04e
SHA256

d975119bb8ac8ea49072e4711729b4a5a911c2959b38548716ce794cc85f2302
SHA512

65d5fc65e056e66610d35031d2581359fabfa3a984ce14f6e3daba467e44990ddd49049501ad6ddec626129ce0218e30e9839b4deea536142e32df989b616a02
SSDEEP

6144:Hro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dc7:HrAu6/eIo4s1yR9lsc/ada

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d975119bb8ac8ea49072e4711729b4a5a911c2959b38548716ce794cc85f2302
- Size
  
  313KB
- MD5
  
  cf6147f71080aecb2c2165defdf58c37
- SHA1
  
  af0e2ee1a4e8777b16a23cec259dff4c82a9a04e
- SHA256
  
  d975119bb8ac8ea49072e4711729b4a5a911c2959b38548716ce794cc85f2302
- SHA512
  
  65d5fc65e056e66610d35031d2581359fabfa3a984ce14f6e3daba467e44990ddd49049501ad6ddec626129ce0218e30e9839b4deea536142e32df989b616a02
- SSDEEP
  
  6144:Hro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94dc7:HrAu6/eIo4s1yR9lsc/ada
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2