f9f30a65de4744c97f6a85a2f5e9ee21cf771e1dd37f8b3ea9acd1df4f13d7e8 | Triage

Sharing

General

Target

f9f30a65de4744c97f6a85a2f5e9ee21cf771e1dd37f8b3ea9acd1df4f13d7e8
Size

325KB
Sample

221123-hq759aec58
MD5

a54c3db9e502661a31f4172611759676
SHA1

836f432b76db1b56d88dad99a1502606a5da395b
SHA256

f9f30a65de4744c97f6a85a2f5e9ee21cf771e1dd37f8b3ea9acd1df4f13d7e8
SHA512

be99fb92541ee8700d882b6f5b5b94f0d7cd89010c9bc491acc57f543b3d1f7ddb1edc35b01dea72c769f5c969d10a72d675e17e2bc7cfd62cfb7dd0580e024f
SSDEEP

6144:Ur1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5og:Ur1B3u6/eIo4ArVUBQCCYOqmO5og

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f9f30a65de4744c97f6a85a2f5e9ee21cf771e1dd37f8b3ea9acd1df4f13d7e8
- Size
  
  325KB
- MD5
  
  a54c3db9e502661a31f4172611759676
- SHA1
  
  836f432b76db1b56d88dad99a1502606a5da395b
- SHA256
  
  f9f30a65de4744c97f6a85a2f5e9ee21cf771e1dd37f8b3ea9acd1df4f13d7e8
- SHA512
  
  be99fb92541ee8700d882b6f5b5b94f0d7cd89010c9bc491acc57f543b3d1f7ddb1edc35b01dea72c769f5c969d10a72d675e17e2bc7cfd62cfb7dd0580e024f
- SSDEEP
  
  6144:Ur1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5og:Ur1B3u6/eIo4ArVUBQCCYOqmO5og
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2