d1ab4a9e162f34fb022208129144321e18b8ccd4106bca7eaafb1fe492d5e06f | Triage

Sharing

General

Target

d1ab4a9e162f34fb022208129144321e18b8ccd4106bca7eaafb1fe492d5e06f
Size

316KB
Sample

221123-h96frsae9z
MD5

fee3beedf721b4a5bdf3b72bdfcc9a78
SHA1

cb43f33df0c18ff742f24534d22eef9e24dea266
SHA256

d1ab4a9e162f34fb022208129144321e18b8ccd4106bca7eaafb1fe492d5e06f
SHA512

a422c028f9651398322274ae4964319f98b87523ac3da7deed52311b1fe8cfefd54d9670ec5eea35cacc194d785c39e559e823a3d0993b103766d41540395f55
SSDEEP

6144:iribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xH1:ir7kuveY33FJUo7MDkA6o

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d1ab4a9e162f34fb022208129144321e18b8ccd4106bca7eaafb1fe492d5e06f
- Size
  
  316KB
- MD5
  
  fee3beedf721b4a5bdf3b72bdfcc9a78
- SHA1
  
  cb43f33df0c18ff742f24534d22eef9e24dea266
- SHA256
  
  d1ab4a9e162f34fb022208129144321e18b8ccd4106bca7eaafb1fe492d5e06f
- SHA512
  
  a422c028f9651398322274ae4964319f98b87523ac3da7deed52311b1fe8cfefd54d9670ec5eea35cacc194d785c39e559e823a3d0993b103766d41540395f55
- SSDEEP
  
  6144:iribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xH1:ir7kuveY33FJUo7MDkA6o
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2