f4165e9b7eb9cb2855a3573aadcfd03c9abe8dc3e6a99d6a7eae8d0400ced4fc | Triage

Sharing

General

Target

f4165e9b7eb9cb2855a3573aadcfd03c9abe8dc3e6a99d6a7eae8d0400ced4fc
Size

316KB
Sample

221123-htvpbsed63
MD5

ca59193cf3aac639f6b270da7ba8d943
SHA1

2901292fb5ce7c517d5a0c7f984caa4f4d5cd78e
SHA256

f4165e9b7eb9cb2855a3573aadcfd03c9abe8dc3e6a99d6a7eae8d0400ced4fc
SHA512

cd3f2b6a46e69d64a552be238a6b4abe40f21e04c54c433dc568c8b87d0941d234085dd1f151fa522b8737e9650fa18746f18adb599ccaab9e74057e01afaa62
SSDEEP

6144:Zr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDArQ:Zr+kuveY3hdLzrfn5A1KtBv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f4165e9b7eb9cb2855a3573aadcfd03c9abe8dc3e6a99d6a7eae8d0400ced4fc
- Size
  
  316KB
- MD5
  
  ca59193cf3aac639f6b270da7ba8d943
- SHA1
  
  2901292fb5ce7c517d5a0c7f984caa4f4d5cd78e
- SHA256
  
  f4165e9b7eb9cb2855a3573aadcfd03c9abe8dc3e6a99d6a7eae8d0400ced4fc
- SHA512
  
  cd3f2b6a46e69d64a552be238a6b4abe40f21e04c54c433dc568c8b87d0941d234085dd1f151fa522b8737e9650fa18746f18adb599ccaab9e74057e01afaa62
- SSDEEP
  
  6144:Zr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDArQ:Zr+kuveY3hdLzrfn5A1KtBv
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2