d95e4bcdb0dcd786bf2ece7047854598808aa613a74f1db4dfbd63b4d56e338e | Triage

Sharing

General

Target

d95e4bcdb0dcd786bf2ece7047854598808aa613a74f1db4dfbd63b4d56e338e
Size

313KB
Sample

221123-h6ylrafa44
MD5

8e301a5258ad6b0308b9b0c24f33bc16
SHA1

06f955fe86cf9af9db3f06953efc57b1598e6f18
SHA256

d95e4bcdb0dcd786bf2ece7047854598808aa613a74f1db4dfbd63b4d56e338e
SHA512

faf843ec042a3dd4b94c816e75a36b353665d3e8849f98f831167923f1703956dc8c78a1a2dae51fe7ee5131ef98f83e523692ff8ab0aca3d2a2348118de5cfe
SSDEEP

6144:Rrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMT:RrRu6/eIo4t3PuFITKUAQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d95e4bcdb0dcd786bf2ece7047854598808aa613a74f1db4dfbd63b4d56e338e
- Size
  
  313KB
- MD5
  
  8e301a5258ad6b0308b9b0c24f33bc16
- SHA1
  
  06f955fe86cf9af9db3f06953efc57b1598e6f18
- SHA256
  
  d95e4bcdb0dcd786bf2ece7047854598808aa613a74f1db4dfbd63b4d56e338e
- SHA512
  
  faf843ec042a3dd4b94c816e75a36b353665d3e8849f98f831167923f1703956dc8c78a1a2dae51fe7ee5131ef98f83e523692ff8ab0aca3d2a2348118de5cfe
- SSDEEP
  
  6144:Rrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMT:RrRu6/eIo4t3PuFITKUAQ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2