6bb9ce038a8b98a282d3574400434af415b1ea0b6a2c468ac272b0fc6087cdcc | Triage

Sharing

General

Target

6bb9ce038a8b98a282d3574400434af415b1ea0b6a2c468ac272b0fc6087cdcc
Size

316KB
Sample

221123-j7g6tsca3x
MD5

de6774b4778717983cdd16e54c615f45
SHA1

e04f794f3da786ee1c0dbf9b3c59f397409741f2
SHA256

6bb9ce038a8b98a282d3574400434af415b1ea0b6a2c468ac272b0fc6087cdcc
SHA512

b4cbc450f0408773043a21cffc2e0c2ef85546c10099fc436d9ac55c3e477eec84e927316d894771158ea24dc1ac07991016c56b374e3bd2137903120290f6a0
SSDEEP

6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVf:RrkkuveY3zhlV6tmDxzwVf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6bb9ce038a8b98a282d3574400434af415b1ea0b6a2c468ac272b0fc6087cdcc
- Size
  
  316KB
- MD5
  
  de6774b4778717983cdd16e54c615f45
- SHA1
  
  e04f794f3da786ee1c0dbf9b3c59f397409741f2
- SHA256
  
  6bb9ce038a8b98a282d3574400434af415b1ea0b6a2c468ac272b0fc6087cdcc
- SHA512
  
  b4cbc450f0408773043a21cffc2e0c2ef85546c10099fc436d9ac55c3e477eec84e927316d894771158ea24dc1ac07991016c56b374e3bd2137903120290f6a0
- SSDEEP
  
  6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVf:RrkkuveY3zhlV6tmDxzwVf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2