fda7f980a8aaec49e162c431b9ca4d531d2eac687568bc97c96d550760727ba7 | Triage

Sharing

General

Target

fda7f980a8aaec49e162c431b9ca4d531d2eac687568bc97c96d550760727ba7
Size

327KB
Sample

221123-hpsdeahf9y
MD5

49c65af9eb69202d1f667857c15a47c1
SHA1

437c6e0d7f3737a03fbef0445af397f1e58f32fd
SHA256

fda7f980a8aaec49e162c431b9ca4d531d2eac687568bc97c96d550760727ba7
SHA512

768f6ce18bc9b10dd60ad9b27518e1fd0d8481e6c42789006848ebe86e2c13b9f6448a74d11681665491176d24e201ee7ed07b87396c5fddaff7fe150b932ac1
SSDEEP

6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:pr4iu6/eIo4Rsw33AtsmQn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fda7f980a8aaec49e162c431b9ca4d531d2eac687568bc97c96d550760727ba7
- Size
  
  327KB
- MD5
  
  49c65af9eb69202d1f667857c15a47c1
- SHA1
  
  437c6e0d7f3737a03fbef0445af397f1e58f32fd
- SHA256
  
  fda7f980a8aaec49e162c431b9ca4d531d2eac687568bc97c96d550760727ba7
- SHA512
  
  768f6ce18bc9b10dd60ad9b27518e1fd0d8481e6c42789006848ebe86e2c13b9f6448a74d11681665491176d24e201ee7ed07b87396c5fddaff7fe150b932ac1
- SSDEEP
  
  6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:pr4iu6/eIo4Rsw33AtsmQn
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2