fb5af467370d1cf0cf0d98fc706b14c444eaac526821d2dc43f7fb704161ba8a | Triage

Sharing

General

Target

fb5af467370d1cf0cf0d98fc706b14c444eaac526821d2dc43f7fb704161ba8a
Size

313KB
Sample

221123-hqpnxahg4t
MD5

8b121abe58934203ae4d792587f00e45
SHA1

63e5dccf3fb6d4e7a685bffdbec786dcc209843c
SHA256

fb5af467370d1cf0cf0d98fc706b14c444eaac526821d2dc43f7fb704161ba8a
SHA512

ad68fae532cb3f75b877381d9a2ced4e39dce7ae6178893875b4c4332b14a5739b2b23abfdf2a17011c4b3a2d8fbbbe0d0a1d0c2a7c13dbb390d34ca6564b759
SSDEEP

6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDg:wrfu6/eIo4jVW5soVCcQovoO0DJM+ET

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fb5af467370d1cf0cf0d98fc706b14c444eaac526821d2dc43f7fb704161ba8a
- Size
  
  313KB
- MD5
  
  8b121abe58934203ae4d792587f00e45
- SHA1
  
  63e5dccf3fb6d4e7a685bffdbec786dcc209843c
- SHA256
  
  fb5af467370d1cf0cf0d98fc706b14c444eaac526821d2dc43f7fb704161ba8a
- SHA512
  
  ad68fae532cb3f75b877381d9a2ced4e39dce7ae6178893875b4c4332b14a5739b2b23abfdf2a17011c4b3a2d8fbbbe0d0a1d0c2a7c13dbb390d34ca6564b759
- SSDEEP
  
  6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDg:wrfu6/eIo4jVW5soVCcQovoO0DJM+ET
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2