816e7d3f3d37c541e50c22cd4dede0da6dee105ceb6fa000490df4c32b9b8428 | Triage

Sharing

General

Target

816e7d3f3d37c541e50c22cd4dede0da6dee105ceb6fa000490df4c32b9b8428
Size

327KB
Sample

221123-j23kksbg5s
MD5

ad16d5c93c1b760652dfaa0aec9be3bc
SHA1

ba92d006c1809953aff6362b0f1f2e8adc69b7c1
SHA256

816e7d3f3d37c541e50c22cd4dede0da6dee105ceb6fa000490df4c32b9b8428
SHA512

68ab7e674dae3280f4951b50f370b7edc81ff114ed7a4f71903098c97bbc12766396e106b0a8bdb4c5c9d95735603d123ec3268838a9024dd846f10580ce0834
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F6:Rr4iu6/eIo4Rsw33AtsmQT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  816e7d3f3d37c541e50c22cd4dede0da6dee105ceb6fa000490df4c32b9b8428
- Size
  
  327KB
- MD5
  
  ad16d5c93c1b760652dfaa0aec9be3bc
- SHA1
  
  ba92d006c1809953aff6362b0f1f2e8adc69b7c1
- SHA256
  
  816e7d3f3d37c541e50c22cd4dede0da6dee105ceb6fa000490df4c32b9b8428
- SHA512
  
  68ab7e674dae3280f4951b50f370b7edc81ff114ed7a4f71903098c97bbc12766396e106b0a8bdb4c5c9d95735603d123ec3268838a9024dd846f10580ce0834
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F6:Rr4iu6/eIo4Rsw33AtsmQT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2