d236fe616fee170c6f3b3bf7277e990218f379514d02e8e48cbdb63eb6b383f1 | Triage

Sharing

General

Target

d236fe616fee170c6f3b3bf7277e990218f379514d02e8e48cbdb63eb6b383f1
Size

327KB
Sample

221123-h9xtmaae8y
MD5

5bc0ad071e7eba92059186471483857f
SHA1

9a9147f47b67ccb512e28ab6cb1b7f18226ad047
SHA256

d236fe616fee170c6f3b3bf7277e990218f379514d02e8e48cbdb63eb6b383f1
SHA512

670c0ca52f49d441415ff9bdb45ca4be651fca87552e17a2c3b86cff061913690e30e3b16050c1fd00594520428f501bc61a3abf5431108e955b87e690f3a099
SSDEEP

6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Ff:Zr4iu6/eIo4Rsw33AtsmQG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d236fe616fee170c6f3b3bf7277e990218f379514d02e8e48cbdb63eb6b383f1
- Size
  
  327KB
- MD5
  
  5bc0ad071e7eba92059186471483857f
- SHA1
  
  9a9147f47b67ccb512e28ab6cb1b7f18226ad047
- SHA256
  
  d236fe616fee170c6f3b3bf7277e990218f379514d02e8e48cbdb63eb6b383f1
- SHA512
  
  670c0ca52f49d441415ff9bdb45ca4be651fca87552e17a2c3b86cff061913690e30e3b16050c1fd00594520428f501bc61a3abf5431108e955b87e690f3a099
- SSDEEP
  
  6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Ff:Zr4iu6/eIo4Rsw33AtsmQG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2