d349c6bba31e0d713f3621aa32edb977df3b6c878151d74ee87737f2ddbeba4b | Triage

Sharing

General

Target

d349c6bba31e0d713f3621aa32edb977df3b6c878151d74ee87737f2ddbeba4b
Size

313KB
Sample

221123-h9j8jafb45
MD5

e6160d330c61ef3f349d10fb66dc9aae
SHA1

2504184707681ca31bdf609f8f966315707ec3be
SHA256

d349c6bba31e0d713f3621aa32edb977df3b6c878151d74ee87737f2ddbeba4b
SHA512

2df5ed41f6cf019ed536f6573f993ec1f2b26431ab096d31c2784ccf81a80aa5965ebddc5649848c9c53fe596f14a4eea114cdf7985becf87c466e9f83052eee
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYS:Ark4u6/eIo4nlu7trxFtApfgMyrpjYS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d349c6bba31e0d713f3621aa32edb977df3b6c878151d74ee87737f2ddbeba4b
- Size
  
  313KB
- MD5
  
  e6160d330c61ef3f349d10fb66dc9aae
- SHA1
  
  2504184707681ca31bdf609f8f966315707ec3be
- SHA256
  
  d349c6bba31e0d713f3621aa32edb977df3b6c878151d74ee87737f2ddbeba4b
- SHA512
  
  2df5ed41f6cf019ed536f6573f993ec1f2b26431ab096d31c2784ccf81a80aa5965ebddc5649848c9c53fe596f14a4eea114cdf7985becf87c466e9f83052eee
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYS:Ark4u6/eIo4nlu7trxFtApfgMyrpjYS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2