871ff274478c20ea2ca2bcbec778c4a837d36fb8d9d92baab4b2bc65e9a35e9b | Triage

Sharing

General

Target

871ff274478c20ea2ca2bcbec778c4a837d36fb8d9d92baab4b2bc65e9a35e9b
Size

313KB
Sample

221123-j11dtsgd27
MD5

a43eb5bbe26e0f4404aca716504bec12
SHA1

c557eda46643b1742204838e0eb5f2656facbe1c
SHA256

871ff274478c20ea2ca2bcbec778c4a837d36fb8d9d92baab4b2bc65e9a35e9b
SHA512

20f5ef2d4328ca7e9923fd76f51b2575e2e10abbd6bab72f258bb5daa06cec44d74bb6991ec67091329784b0cdbd74f4b5cbd34734f218d8676ee04d6f32ce20
SSDEEP

6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDE:orfu6/eIo4jVW5soVCcQovoO0DJM+En

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  871ff274478c20ea2ca2bcbec778c4a837d36fb8d9d92baab4b2bc65e9a35e9b
- Size
  
  313KB
- MD5
  
  a43eb5bbe26e0f4404aca716504bec12
- SHA1
  
  c557eda46643b1742204838e0eb5f2656facbe1c
- SHA256
  
  871ff274478c20ea2ca2bcbec778c4a837d36fb8d9d92baab4b2bc65e9a35e9b
- SHA512
  
  20f5ef2d4328ca7e9923fd76f51b2575e2e10abbd6bab72f258bb5daa06cec44d74bb6991ec67091329784b0cdbd74f4b5cbd34734f218d8676ee04d6f32ce20
- SSDEEP
  
  6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDE:orfu6/eIo4jVW5soVCcQovoO0DJM+En
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2