f4917ab6a0ac61a9eca11e8bbecbdd30c0b706d6ade3ff4f0b88604a4f38ec07 | Triage

Sharing

General

Target

f4917ab6a0ac61a9eca11e8bbecbdd30c0b706d6ade3ff4f0b88604a4f38ec07
Size

313KB
Sample

221123-htkjcsed52
MD5

d39995a27bfc9b1d768ee5fca166aca5
SHA1

1003108bee6c4b0a4782db45c7cb6a498946ddf8
SHA256

f4917ab6a0ac61a9eca11e8bbecbdd30c0b706d6ade3ff4f0b88604a4f38ec07
SHA512

675e4fa46eacc037c71ae353262aac4d114a1bf5b92f8307f87587a48c0d025e73d36a9a99a508be9ec96f43fb91007aa48f26ba9e254317f733e9a1a5b5e1ba
SSDEEP

6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYm:wrk4u6/eIo4nlu7trxFtApfgMyrpjYm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f4917ab6a0ac61a9eca11e8bbecbdd30c0b706d6ade3ff4f0b88604a4f38ec07
- Size
  
  313KB
- MD5
  
  d39995a27bfc9b1d768ee5fca166aca5
- SHA1
  
  1003108bee6c4b0a4782db45c7cb6a498946ddf8
- SHA256
  
  f4917ab6a0ac61a9eca11e8bbecbdd30c0b706d6ade3ff4f0b88604a4f38ec07
- SHA512
  
  675e4fa46eacc037c71ae353262aac4d114a1bf5b92f8307f87587a48c0d025e73d36a9a99a508be9ec96f43fb91007aa48f26ba9e254317f733e9a1a5b5e1ba
- SSDEEP
  
  6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYm:wrk4u6/eIo4nlu7trxFtApfgMyrpjYm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2