72057168ca909652a211fda37f453f7e06663ded2aa94b6481eaa6340451dd49 | Triage

Sharing

General

Target

72057168ca909652a211fda37f453f7e06663ded2aa94b6481eaa6340451dd49
Size

313KB
Sample

221123-j5wlfabh6x
MD5

e9862881c933fb1b09d02de7a80de8ca
SHA1

bf513de93e79a83581f517bc99e7df933f6414d4
SHA256

72057168ca909652a211fda37f453f7e06663ded2aa94b6481eaa6340451dd49
SHA512

94eef90c3e92242f7fa519e3c97561ce4adfd97a38566efb76a21467a1d33f7e56d12d5e988493f0e3ed50a426054dfe52c1d2e82fc4831c5afbe8a31ca301e6
SSDEEP

6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMr:prRu6/eIo4t3PuFITKUAg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  72057168ca909652a211fda37f453f7e06663ded2aa94b6481eaa6340451dd49
- Size
  
  313KB
- MD5
  
  e9862881c933fb1b09d02de7a80de8ca
- SHA1
  
  bf513de93e79a83581f517bc99e7df933f6414d4
- SHA256
  
  72057168ca909652a211fda37f453f7e06663ded2aa94b6481eaa6340451dd49
- SHA512
  
  94eef90c3e92242f7fa519e3c97561ce4adfd97a38566efb76a21467a1d33f7e56d12d5e988493f0e3ed50a426054dfe52c1d2e82fc4831c5afbe8a31ca301e6
- SSDEEP
  
  6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMr:prRu6/eIo4t3PuFITKUAg
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2