f6005eeb66e04ccdb5b3d95bab31486c5e8b8800d1c912edeb88609e26b62398 | Triage

Sharing

General

Target

f6005eeb66e04ccdb5b3d95bab31486c5e8b8800d1c912edeb88609e26b62398
Size

327KB
Sample

221123-hsvypshh2y
MD5

57196ca305f0cbb02779f1d8a0a82760
SHA1

8687a4206dca14ede7737cd4ea8a3b6a2f03970b
SHA256

f6005eeb66e04ccdb5b3d95bab31486c5e8b8800d1c912edeb88609e26b62398
SHA512

2b16b114b72b3a466bca6df90d8dd938ce7ba9368ea9df8990e68d8d31f4db1d2d93ced135ae48cd0e6c376e4e0f99fdbb7fbd30ac561d801bc18c35807d32b0
SSDEEP

6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FR:pr4iu6/eIo4Rsw33AtsmQw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f6005eeb66e04ccdb5b3d95bab31486c5e8b8800d1c912edeb88609e26b62398
- Size
  
  327KB
- MD5
  
  57196ca305f0cbb02779f1d8a0a82760
- SHA1
  
  8687a4206dca14ede7737cd4ea8a3b6a2f03970b
- SHA256
  
  f6005eeb66e04ccdb5b3d95bab31486c5e8b8800d1c912edeb88609e26b62398
- SHA512
  
  2b16b114b72b3a466bca6df90d8dd938ce7ba9368ea9df8990e68d8d31f4db1d2d93ced135ae48cd0e6c376e4e0f99fdbb7fbd30ac561d801bc18c35807d32b0
- SSDEEP
  
  6144:pr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FR:pr4iu6/eIo4Rsw33AtsmQw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2