f6652c85cfc6c690cda51e2db4f5fc166a3813c5c0e31d6f10eaec403bd7ff81 | Triage

Sharing

General

Target

f6652c85cfc6c690cda51e2db4f5fc166a3813c5c0e31d6f10eaec403bd7ff81
Size

316KB
Sample

221123-hsrahshh2w
MD5

adb732f352e5e40a0451dea1678c3b4e
SHA1

5f5a17514dc4493b2f169f17d5554cdb290d83cd
SHA256

f6652c85cfc6c690cda51e2db4f5fc166a3813c5c0e31d6f10eaec403bd7ff81
SHA512

6b71764e1c62199460f226c5a42810242ce398f749ced793e2a5489b206760a814bfd68e0253987ce3c17e9b37a63bed0aa154429723a60eec1d643c562cfeea
SSDEEP

6144:2r+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmiV:2rXkuveY3z+U83tbLpmsgh/V

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f6652c85cfc6c690cda51e2db4f5fc166a3813c5c0e31d6f10eaec403bd7ff81
- Size
  
  316KB
- MD5
  
  adb732f352e5e40a0451dea1678c3b4e
- SHA1
  
  5f5a17514dc4493b2f169f17d5554cdb290d83cd
- SHA256
  
  f6652c85cfc6c690cda51e2db4f5fc166a3813c5c0e31d6f10eaec403bd7ff81
- SHA512
  
  6b71764e1c62199460f226c5a42810242ce398f749ced793e2a5489b206760a814bfd68e0253987ce3c17e9b37a63bed0aa154429723a60eec1d643c562cfeea
- SSDEEP
  
  6144:2r+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmiV:2rXkuveY3z+U83tbLpmsgh/V
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2