d3f3ab79c31c9b86d16566fdb639cbfca5df3f3d362a5244d779309b32f54bd2 | Triage

Sharing

General

Target

d3f3ab79c31c9b86d16566fdb639cbfca5df3f3d362a5244d779309b32f54bd2
Size

313KB
Sample

221123-h847bafb32
MD5

6bec37a22cf5bf79a493619e0d90d582
SHA1

a6ba3a227785e4cfb7cfe67870d52331eb293992
SHA256

d3f3ab79c31c9b86d16566fdb639cbfca5df3f3d362a5244d779309b32f54bd2
SHA512

3c315806bf4436aac004242122eb7389b81e29d000a4ce16f2ce655a27d7de946598bf13b17b3bae3a5fc7f32989f2c63f9ed897fd09e28de00abfc0da968f9a
SSDEEP

6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDH:wrfu6/eIo4jVW5soVCcQovoO0DJM+E0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d3f3ab79c31c9b86d16566fdb639cbfca5df3f3d362a5244d779309b32f54bd2
- Size
  
  313KB
- MD5
  
  6bec37a22cf5bf79a493619e0d90d582
- SHA1
  
  a6ba3a227785e4cfb7cfe67870d52331eb293992
- SHA256
  
  d3f3ab79c31c9b86d16566fdb639cbfca5df3f3d362a5244d779309b32f54bd2
- SHA512
  
  3c315806bf4436aac004242122eb7389b81e29d000a4ce16f2ce655a27d7de946598bf13b17b3bae3a5fc7f32989f2c63f9ed897fd09e28de00abfc0da968f9a
- SSDEEP
  
  6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDH:wrfu6/eIo4jVW5soVCcQovoO0DJM+E0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2