f0d11e4f1d0095e8da30ae742e9e27da319782a7c9098b6272817d05a1f25932 | Triage

Sharing

General

Target

f0d11e4f1d0095e8da30ae742e9e27da319782a7c9098b6272817d05a1f25932
Size

313KB
Sample

221123-hv5wpaee25
MD5

687598e17913fb1bc92d51d6d79cfb48
SHA1

0fb6ae4f0c2f6c175c7174804501ff2551954578
SHA256

f0d11e4f1d0095e8da30ae742e9e27da319782a7c9098b6272817d05a1f25932
SHA512

4ed44924990d00145cb548b38d069b061959c6cffd8687b3b5696e5e172fb0d247aeface18ea521ee96a798cfd8442aaaa0e4b5a075a68da7ea676b933285a90
SSDEEP

6144:Prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMou:PrRu6/eIo4t3PuFITKUAnu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f0d11e4f1d0095e8da30ae742e9e27da319782a7c9098b6272817d05a1f25932
- Size
  
  313KB
- MD5
  
  687598e17913fb1bc92d51d6d79cfb48
- SHA1
  
  0fb6ae4f0c2f6c175c7174804501ff2551954578
- SHA256
  
  f0d11e4f1d0095e8da30ae742e9e27da319782a7c9098b6272817d05a1f25932
- SHA512
  
  4ed44924990d00145cb548b38d069b061959c6cffd8687b3b5696e5e172fb0d247aeface18ea521ee96a798cfd8442aaaa0e4b5a075a68da7ea676b933285a90
- SSDEEP
  
  6144:Prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMou:PrRu6/eIo4t3PuFITKUAnu
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2