eb52dd48eb9d67a5262d66e2457fa556c09704f69f8035bf5b1780b7a0c00574 | Triage

Sharing

General

Target

eb52dd48eb9d67a5262d66e2457fa556c09704f69f8035bf5b1780b7a0c00574
Size

313KB
Sample

221123-hx9bwsaa9t
MD5

0974fd367ef6816fa6db0e4b760f27d1
SHA1

cf86a9dd2197a0808f100ae64a630ca2a9888242
SHA256

eb52dd48eb9d67a5262d66e2457fa556c09704f69f8035bf5b1780b7a0c00574
SHA512

16cfc0199eb5885003f73a05bae7e902afc9d9b03f977b89cf5babbfe791a541bb461688a0a8f958f5262f1c6a519c7814494d8adb2cf91a4b3c7fb79c2f2b91
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYx:Ark4u6/eIo4nlu7trxFtApfgMyrpjYx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eb52dd48eb9d67a5262d66e2457fa556c09704f69f8035bf5b1780b7a0c00574
- Size
  
  313KB
- MD5
  
  0974fd367ef6816fa6db0e4b760f27d1
- SHA1
  
  cf86a9dd2197a0808f100ae64a630ca2a9888242
- SHA256
  
  eb52dd48eb9d67a5262d66e2457fa556c09704f69f8035bf5b1780b7a0c00574
- SHA512
  
  16cfc0199eb5885003f73a05bae7e902afc9d9b03f977b89cf5babbfe791a541bb461688a0a8f958f5262f1c6a519c7814494d8adb2cf91a4b3c7fb79c2f2b91
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYx:Ark4u6/eIo4nlu7trxFtApfgMyrpjYx
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2