f4787686eed33e840c4ab34eda381c1c837ffb848d33d6d1f9f8aa2948820f6c | Triage

Sharing

General

Target

f4787686eed33e840c4ab34eda381c1c837ffb848d33d6d1f9f8aa2948820f6c
Size

316KB
Sample

221123-htm99ahh5z
MD5

d18b0cdeed90bda41636b42f0fb40a4c
SHA1

3d8061f53fb1701161e0ddee2bfba8d6a051672a
SHA256

f4787686eed33e840c4ab34eda381c1c837ffb848d33d6d1f9f8aa2948820f6c
SHA512

a6da6dbcf412960db373172212f4801c109a17635a98885c58a0cd6eac0dcc48065c3cb633272566b9c08704ab10385fca1b00d2d0dbd049114ff072352601d6
SSDEEP

6144:BrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVK:BrkkuveY3zhlV6tmDxzwVK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f4787686eed33e840c4ab34eda381c1c837ffb848d33d6d1f9f8aa2948820f6c
- Size
  
  316KB
- MD5
  
  d18b0cdeed90bda41636b42f0fb40a4c
- SHA1
  
  3d8061f53fb1701161e0ddee2bfba8d6a051672a
- SHA256
  
  f4787686eed33e840c4ab34eda381c1c837ffb848d33d6d1f9f8aa2948820f6c
- SHA512
  
  a6da6dbcf412960db373172212f4801c109a17635a98885c58a0cd6eac0dcc48065c3cb633272566b9c08704ab10385fca1b00d2d0dbd049114ff072352601d6
- SSDEEP
  
  6144:BrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVK:BrkkuveY3zhlV6tmDxzwVK
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2